From 97ce466fbdcdb4caefae52163ecaa5055cba8234 Mon Sep 17 00:00:00 2001
From: David Wertenteil <dwertent@armosec.io>
Date: Tue, 30 Apr 2024 10:27:23 +0300
Subject: [PATCH] update permissions

Signed-off-by: David Wertenteil <dwertent@armosec.io>
---
 .github/workflows/00-pr-scanner.yaml | 2 ++
 .github/workflows/02-release.yaml    | 2 ++
 2 files changed, 4 insertions(+)

diff --git a/.github/workflows/00-pr-scanner.yaml b/.github/workflows/00-pr-scanner.yaml
index 3f5e30c5a5..0d19bb0a08 100644
--- a/.github/workflows/00-pr-scanner.yaml
+++ b/.github/workflows/00-pr-scanner.yaml
@@ -34,6 +34,7 @@ jobs:
       repository-projects: read
       security-events: read
       statuses: read
+      attestations: read
     uses: ./.github/workflows/a-pr-scanner.yaml
     with:
       RELEASE: ""
@@ -58,6 +59,7 @@ jobs:
       repository-projects: read
       security-events: read
       statuses: read
+      attestations: read
     uses: ./.github/workflows/b-binary-build-and-e2e-tests.yaml
     with:
       COMPONENT_NAME: kubescape
diff --git a/.github/workflows/02-release.yaml b/.github/workflows/02-release.yaml
index aaf400330d..dbbf8e729d 100644
--- a/.github/workflows/02-release.yaml
+++ b/.github/workflows/02-release.yaml
@@ -56,6 +56,7 @@ jobs:
       repository-projects: read
       statuses: read
       security-events: read
+      attestations: read
     needs: [retag, binary-build]
     uses: ./.github/workflows/c-create-release.yaml
     with:
@@ -78,6 +79,7 @@ jobs:
       repository-projects: read
       security-events: read
       statuses: read
+      attestations: read
     uses: ./.github/workflows/d-publish-image.yaml
     needs: [create-release, retag]
     with: