From fb4c58c3134dd16a48717371a749b49ce6ca0eca Mon Sep 17 00:00:00 2001
From: seth <getchoo@tuta.io>
Date: Fri, 13 Oct 2023 11:23:07 -0400
Subject: actions: use GH_TOKEN for gh & scope permissions to jobs

---
 .github/workflows/update-lock.yaml | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

(limited to '.github/workflows/update-lock.yaml')

diff --git a/.github/workflows/update-lock.yaml b/.github/workflows/update-lock.yaml
index 9e3301d..6603616 100644
--- a/.github/workflows/update-lock.yaml
+++ b/.github/workflows/update-lock.yaml
@@ -6,14 +6,14 @@ on:
     - cron: "0 0 * * 6"
   workflow_dispatch:
 
-permissions:
-  contents: write
-  pull-requests: write
-
 jobs:
   update:
     runs-on: ubuntu-latest
 
+    permissions:
+      contents: write
+      pull-requests: write
+
     steps:
       - uses: actions/checkout@v4
       - uses: DeterminateSystems/nix-installer-action@main
@@ -30,5 +30,5 @@ jobs:
         shell: bash
         run: gh pr merge --auto --rebase "$PR_ID"
         env:
-          GITHUB_TOKEN: ${{ github.token }}
+          GH_TOKEN: ${{ github.token }}
           PR_ID: ${{ steps.update.outputs.pull-request-number }}
-- 
cgit v1.2.3