From 646afc55591f790e9ecce42904fee17f0ce59f33 Mon Sep 17 00:00:00 2001
From: Prashant Srivastava <srprash@amazon.com>
Date: Thu, 19 Dec 2024 12:23:34 -0800
Subject: [PATCH] add permissions to allow oidc

---
 .github/workflows/IntegrationTesting.yml    | 4 ++++
 .github/workflows/continuous-monitoring.yml | 4 ++++
 .github/workflows/ecr-publish.yml           | 5 +++++
 3 files changed, 13 insertions(+)

diff --git a/.github/workflows/IntegrationTesting.yml b/.github/workflows/IntegrationTesting.yml
index b62523f2..536a7844 100644
--- a/.github/workflows/IntegrationTesting.yml
+++ b/.github/workflows/IntegrationTesting.yml
@@ -5,6 +5,10 @@ on:
     branches:
       - master
 
+permissions:
+  id-token: write
+  contents: read
+
 jobs:
   package_SDK:
     name: Build X-Ray Go SDK With Sample App
diff --git a/.github/workflows/continuous-monitoring.yml b/.github/workflows/continuous-monitoring.yml
index 4a9c4a88..7d12df38 100644
--- a/.github/workflows/continuous-monitoring.yml
+++ b/.github/workflows/continuous-monitoring.yml
@@ -4,6 +4,10 @@ on:
   schedule:
     - cron:  '*/10 * * * *'
 
+permissions:
+  id-token: write
+  contents: read
+
 jobs:
   smoke-tests:
     name: Run smoke tests
diff --git a/.github/workflows/ecr-publish.yml b/.github/workflows/ecr-publish.yml
index e7d884d4..4c635f39 100644
--- a/.github/workflows/ecr-publish.yml
+++ b/.github/workflows/ecr-publish.yml
@@ -2,6 +2,11 @@ on:
   push:
     branches:
       - master
+
+permissions:
+  id-token: write
+  contents: read
+
 jobs:
   build_push_sample_app_image:
     name: Build and Push Sample App docker image