From d7d07b1c8513b6425d10b0cb2cd1c0eea60372ea Mon Sep 17 00:00:00 2001
From: Crash Collison <3751389+tehcrashxor@users.noreply.github.com>
Date: Mon, 13 May 2024 16:36:54 -0700
Subject: [PATCH] Update rolling-instance-actions with permissions for WIF

---
 .github/workflows/rolling-instance-actions.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/rolling-instance-actions.yml b/.github/workflows/rolling-instance-actions.yml
index 88dc2472..ca22b4a8 100644
--- a/.github/workflows/rolling-instance-actions.yml
+++ b/.github/workflows/rolling-instance-actions.yml
@@ -12,6 +12,9 @@ on:
   push:
     branches: [ main ]
 
+permissions:
+  id-token: write # OIDC token for Workload Identity Federation
+
 jobs:
   instance-actions:
     runs-on: ${{ matrix.os }}