Fix GitHub release permissions in PyPI workflow

buddywhitman · buddywhitman · commit c2ae031eb97d · 2025-09-17T16:09:09.000+05:30
- Add contents: write and packages: write permissions
- Add GITHUB_TOKEN environment variable for authentication
- Should resolve 403 error when creating GitHub releases
diff --git a/.github/workflows/pypi-release.yml b/.github/workflows/pypi-release.yml
@@ -8,6 +8,9 @@ on:
 jobs:
   build:
     runs-on: ubuntu-latest
+    permissions:
+      contents: write
+      packages: write
     steps:
       - name: Checkout code
         uses: actions/checkout@v3
@@ -41,6 +44,8 @@ jobs:
       - name: Create GitHub Release
         if: github.event_name == 'push' && startsWith(github.ref, 'refs/tags')
         uses: softprops/action-gh-release@v1
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         with:
           tag_name: ${{ github.ref_name }}
           name: Release ${{ github.ref_name }}
