From 01af1992af7bee7705849c1ac6e844adce5ec583 Mon Sep 17 00:00:00 2001
From: seth <getchoo@tuta.io>
Date: Fri, 9 Feb 2024 01:14:45 -0500
Subject: actions: use scoped github.token

---
 .github/workflows/update-nixpkgs.yaml | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

(limited to '.github/workflows/update-nixpkgs.yaml')

diff --git a/.github/workflows/update-nixpkgs.yaml b/.github/workflows/update-nixpkgs.yaml
index 57726ec..2fd0ec5 100644
--- a/.github/workflows/update-nixpkgs.yaml
+++ b/.github/workflows/update-nixpkgs.yaml
@@ -8,9 +8,11 @@ on:
 
 jobs:
   update:
+    permissions:
+      contents: write
+      pull-requests: write
+
     uses: ./.github/workflows/update-lock.yaml
     with:
       commit-msg: "flake: update nixpkgs"
       inputs: "nixpkgs nixpkgs-stable"
-    secrets:
-      token: ${{ secrets.MERGE_TOKEN }}
-- 
cgit v1.2.3