fix: add permissions for GITHUB_TOKEN #125

	name: Release

	on:
	push:
	branches:
	- master

	jobs:
	test:
	name: Run Tests
	runs-on: ubuntu-latest
	permissions:
	packages: write
	contents: read

	steps:
	- name: Checkout
	uses: actions/checkout@v2
	- name: Setup Node.js
	uses: actions/setup-node@v2
	with:
	node-version: 'lts/*'
	- name: Install dependencies
	run: npm ci
	- name: Run tests
	run: npm test
	release:
	name: Release
	runs-on: ubuntu-latest
	permissions:
	contents: write # to be able to publish a GitHub release
	issues: write # to be able to comment on released issues
	pull-requests: write # to be able to comment on released pull requests
	id-token: write # to enable use of OIDC for npm provenance

	steps:
	- name: Checkout
	uses: actions/checkout@v2

	- name: Set up Node.js
	uses: actions/setup-node@v2
	with:
	node-version: 'lts/*'
	registry-url: 'https://npm.pkg.github.com'

	- name: Install dependencies
	run: npm clean-install

	- name: Run semantic-release
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	DEBUG: 'semantic-release*'
	run: npx semantic-release
	- name: Publish
	run: npm publish --registry=https://npm.pkg.github.com
	env:
	NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }}

Provide feedback