Skip to content

Fix publishing flow #59

New issue
New issue
Open
#60
Open
Fix publishing flow#59
#60
Labels
triage meI really want to be triaged.type: bugError or flaw in code with unintended results or allowing sub-optimal usage patterns.
@kikoso

Description

@kikoso
kikoso
opened on Dec 27, 2025

The current publishing flow fails after a PR is merged because the reusable workflow publish-mcp.yml requires id-token: write for OIDC authentication.

Since this workflow is called transitively via publish.yml from release-please.yml, and the top-level workflow does not grant id-token permissions, GitHub rejects the workflow during validation. REusable workflows cannot request permissions that exceed those explicitly allowed by their callers.

Metadata

Metadata

Assignees

No one assigned

    Labels

    triage meI really want to be triaged.type: bugError or flaw in code with unintended results or allowing sub-optimal usage patterns.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions