From 6ab56a854ed334f345e1edab13e2944666bd2186 Mon Sep 17 00:00:00 2001
From: Florian Schreiber <florian.schreiber@free-now.com>
Date: Fri, 23 Jan 2026 10:52:13 +0100
Subject: [PATCH] fix(ci): extend GITHUB_TOKEN permissions for release

Based on https://github.com/semantic-release/semantic-release/blob/ce63d8e03845bf2e63175aeda1323f8f4ad594b8/docs/recipes/ci-configurations/github-actions.md#githubworkflowsreleaseyml-configuration-for-node-projects

SREI-3017
---
 .github/workflows/library.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/library.yml b/.github/workflows/library.yml
index 5d158304..e1760710 100644
--- a/.github/workflows/library.yml
+++ b/.github/workflows/library.yml
@@ -32,6 +32,9 @@ jobs:
         if: github.ref == 'refs/heads/main'
         runs-on: ubuntu-latest
         permissions:
+            contents: write # to be able to publish a GitHub release
+            issues: write # to be able to comment on released issues
+            pull-requests: write # to be able to comment on released pull requests
             id-token: write # to enable use of OIDC for trusted publishing and npm provenance
         steps:
             - uses: actions/checkout@v4