From 3f502387c27fadf09221033b117cf3e8e09b835c Mon Sep 17 00:00:00 2001 From: AmitMY Date: Mon, 6 Jul 2026 10:39:44 +0200 Subject: [PATCH] ci: grant deploy workflow contents write permission The default GITHUB_TOKEN is read-only, so the gh-pages push in the deploy step fails with 403. format-bib.yml already declares this permission; deploy.yml was missing it. Co-Authored-By: Claude Fable 5 --- .github/workflows/deploy.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml index cfa0bc34..1a746f71 100644 --- a/.github/workflows/deploy.yml +++ b/.github/workflows/deploy.yml @@ -7,6 +7,9 @@ on: jobs: build-and-deploy: runs-on: ubuntu-latest + permissions: + # Allow the default GITHUB_TOKEN to push the built site to gh-pages + contents: write steps: - name: Checkout 🛎️ uses: actions/checkout@v2.3.1 # If you're using actions/checkout@v2 you must set persist-credentials to false in most cases for the deployment to work correctly.