diff --git a/.github/workflows/auto-release.yml b/.github/workflows/auto-release.yml
index 30e249945..8f89de4c6 100644
--- a/.github/workflows/auto-release.yml
+++ b/.github/workflows/auto-release.yml
@@ -75,6 +75,7 @@ jobs:
     uses: ./.github/workflows/release.yml
     permissions:
       contents: write
+      id-token: write
     secrets: inherit
     with:
       release-tag: ${{ needs.semantic-version.outputs.release-tag }}
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 29d9f86ee..57e037f56 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -84,6 +84,7 @@ jobs:
     runs-on: ubuntu-latest
     environment: release
     permissions:
+      id-token: write
       contents: write # grants permission to create a release on github
     steps:
       - uses: actions/checkout@v4