fix(publish_release): add packages: read permissions

[saltenasl]

Summary by CodeRabbit

• Chores

  • Updated GitHub Actions workflow permissions for package access.

• Refactor

  • Modified public entity declarations.

---

These changes are primarily infrastructure-focused with minimal direct end-user impact.

[coderabbitai]

📝 Walkthrough

Walkthrough

The publish-release GitHub Actions workflow gains a new permission for read access to packages. This allows the workflow to access package registry information during the release publication process. The modification is minimal and focused on permissions configuration.

Pre-merge checks

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%.	You can run @coderabbitai generate docstrings to improve docstring coverage.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title Check	✅ Passed	The title "fix(publish_release): add packages: read permissions" directly and clearly describes the primary change: adding packages read permissions to the publish-release workflow. It's specific and uses conventional commit format appropriately. A developer scanning history would immediately understand what this PR does without ambiguity. The title aligns precisely with the raw summary and matches the changeset content.

---

📜 Recent review details

Configuration used: CodeRabbit UI

Review profile: ASSERTIVE

Plan: Pro

Disabled knowledge base sources:

• Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between 00574ec and 984ef1c.

📒 Files selected for processing (1)

• .github/workflows/publish-release.yml (1 hunks)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (2)

• GitHub Check: build
• GitHub Check: check_release

🔇 Additional comments (1)

.github/workflows/publish-release.yml (1)

19-21: Permissions configuration is correct.

The packages: read permission is necessary for accessing GitHub Package Registry metadata during release publication, and the minimal read-only scope follows least-privilege principle.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 69.56%. Comparing base (00574ec) to head (984ef1c).
⚠️ Report is 1 commits behind head on main.
✅ All tests successful. No failed tests found.

Additional details and impacted files

@@           Coverage Diff           @@
##             main      #59   +/-   ##
=======================================
  Coverage   69.56%   69.56%           
=======================================
  Files          13       13           
  Lines         253      253           
  Branches       28       28           
=======================================
  Hits          176      176           
  Misses         73       73           
  Partials        4        4           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.