From 99879c3421e54c65a5e10510353d55da9e64f0c1 Mon Sep 17 00:00:00 2001
From: Ciara Stacke <c.stacke@f5.com>
Date: Wed, 22 Oct 2025 11:54:34 +0100
Subject: [PATCH] Move permissions to higher context

---
 .github/workflows/production-release.yml | 14 ++++++--------
 1 file changed, 6 insertions(+), 8 deletions(-)

diff --git a/.github/workflows/production-release.yml b/.github/workflows/production-release.yml
index 861c590a33..6aae683a64 100644
--- a/.github/workflows/production-release.yml
+++ b/.github/workflows/production-release.yml
@@ -24,7 +24,12 @@ defaults:
     shell: bash
 
 permissions:
-  contents: read
+  contents: write
+  packages: write
+  id-token: write
+  security-events: write
+  issues: write
+  actions: write
 
 jobs:
   create-tag-and-release:
@@ -94,10 +99,3 @@ jobs:
       operator_version: ${{ github.event.inputs.operator-version }}
       dry_run: ${{ github.event.inputs.dry_run }}
     secrets: inherit
-    permissions:
-      contents: write
-      packages: write
-      id-token: write
-      security-events: write
-      issues: write
-      actions: write