From 6d7ce74a9a7ae8391e2568c5b4ad23f9840269cd Mon Sep 17 00:00:00 2001
From: Martin von Zweigbergk <martinvonz@google.com>
Date: Fri, 16 Sep 2022 05:45:53 -0700
Subject: [PATCH] github: add new required permissions for ossf/scorecard

---
 .github/workflows/scorecards.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
index be5bfb854..2b8e304a6 100644
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -17,8 +17,8 @@ jobs:
     permissions:
       # Needed to upload the results to code-scanning dashboard.
       security-events: write
-      actions: read
-      contents: read
+      id-token: write
+      publish_results: true
 
     steps:
       - name: "Checkout code"