From 6a0916f51b7af709784b62e4e0d72977896a9437 Mon Sep 17 00:00:00 2001
From: Nico Burniske <nicoburniske@gmail.com>
Date: Tue, 11 Jun 2024 07:34:05 -0400
Subject: [PATCH] integrate token permissions to fix provenance generation in
 release workflow

---
 .github/workflows/ci.yaml | 4 ++++
 lib/package.json          | 2 +-
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index 44b6236..eccfa8f 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -8,6 +8,7 @@ on:
     types: [published]
 
 jobs:
+
   build:
     runs-on: ubuntu-latest
     steps:
@@ -36,6 +37,9 @@ jobs:
     needs: build
     runs-on: ubuntu-latest
     if: github.event_name == 'release' && github.event.action == 'published'
+    permissions:
+      contents: read
+      id-token: write
     steps:
       - uses: actions/checkout@v4
       
diff --git a/lib/package.json b/lib/package.json
index 786c2c7..88c2a6f 100644
--- a/lib/package.json
+++ b/lib/package.json
@@ -4,7 +4,7 @@
 	"description": "A library that help writing Golem programs by providing higher level wrappers for Golem's runtime APIs, including functions for defining and performing operations transactionally.",
 	"readme": "../README.md",
 	"repository": {
-		"url": "https://github.com/golemcloud/golem-ts",
+		"url": "git+https://github.com/golemcloud/golem-ts.git",
 		"directory": "lib"
 	},
 	"license": "Apache-2.0",