From d7581070e55f4cd9158fd51b1023dc04711c288c Mon Sep 17 00:00:00 2001
From: "Angel L. P" <59593766+angelphanth@users.noreply.github.com>
Date: Wed, 13 Aug 2025 15:51:23 +0200
Subject: [PATCH 1/2] :bug: add mandatory permissiones for trusted publishing

---
 .github/workflows/cicd.yml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.github/workflows/cicd.yml b/.github/workflows/cicd.yml
index 3d485ce..b92eaa3 100644
--- a/.github/workflows/cicd.yml
+++ b/.github/workflows/cicd.yml
@@ -125,3 +125,6 @@ jobs:
         with:
           # remove repository key to set the default to pypi (not test.pypi.org)
           repository-url: https://test.pypi.org/legacy/
+          
+    permissions:
+      id-token: write
\ No newline at end of file

From 9be97060fd2517d4e867ec7d8398c10b7db7ec15 Mon Sep 17 00:00:00 2001
From: Henry Webel <heweb@dtu.dk>
Date: Thu, 14 Aug 2025 14:26:26 +0200
Subject: [PATCH 2/2] :art: move settings for rule to other settings for rule

---
 .github/workflows/cicd.yml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/cicd.yml b/.github/workflows/cicd.yml
index b92eaa3..315f0ee 100644
--- a/.github/workflows/cicd.yml
+++ b/.github/workflows/cicd.yml
@@ -106,6 +106,8 @@ jobs:
   publish:
     name: Publish package
     if: startsWith(github.ref, 'refs/tags')
+    permissions:
+      id-token: write
     needs:
       - format
       - lint
@@ -125,6 +127,4 @@ jobs:
         with:
           # remove repository key to set the default to pypi (not test.pypi.org)
           repository-url: https://test.pypi.org/legacy/
-          
-    permissions:
-      id-token: write
\ No newline at end of file
+          
\ No newline at end of file