From 41ce40bb8cb137700d80d9e8b308073fe4f49607 Mon Sep 17 00:00:00 2001
From: Federico Di Pierro <nierro92@gmail.com>
Date: Mon, 6 May 2024 11:02:27 +0200
Subject: [PATCH] chore(ci): give correct permissions to release workflow +
 login to ghcr.

Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
---
 .github/workflows/release.yaml | 22 ++++++++++++++++------
 1 file changed, 16 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
index 2c354ea..b5583dc 100644
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@@ -4,6 +4,11 @@ on:
   push:
     tags:
       - 'v[0-9]+.[0-9]+.[0-9]+'
+      
+permissions:
+  contents: write # needed to write releases
+  id-token: write # needed for keyless signing
+  packages: write # needed for ghcr access 
 
 jobs:
   release:
@@ -20,13 +25,18 @@ jobs:
           go-version-file: 'go.mod'    
           
       - name: Install sodium
-        run: sudo apt-get install -y libsodium-dev    
+        run: sudo apt-get install -y libsodium-dev
+      
+      - uses: docker/login-action@v2
+        with:
+          registry: ghcr.io
+          username: ${{ github.repository_owner }}
+          password: ${{ secrets.GITHUB_TOKEN }}
 
-      - name: Run GoReleaser
-        uses: goreleaser/goreleaser-action@v3
+      - name: Publish release
+        uses: goreleaser/goreleaser-action@f82d6c1c344bcacabba2c841718984797f664a6b #4.2.0
         with:
-          distribution: goreleaser
-          version: v1.10.3
-          args: release --rm-dist --timeout 60m
+          version: latest
+          args: release --clean
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}