From 140a40acaf4eeaad4a61fa1e9aa4438e6085f318 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Fr=C3=A9d=C3=A9ric=20Guillot?= <f@miniflux.net>
Date: Mon, 27 Mar 2023 21:21:07 -0700
Subject: [PATCH] Use secrets.GITHUB_TOKEN to push images instead of a PAT

---
 .github/workflows/docker.yml | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml
index 5c10b7d7..7eb03e2c 100644
--- a/.github/workflows/docker.yml
+++ b/.github/workflows/docker.yml
@@ -1,5 +1,4 @@
 name: Docker
-permissions: read-all
 on:
   schedule:
     - cron: '0 1 * * *'
@@ -8,6 +7,8 @@ on:
       - '*.*.*'
 jobs:
   docker-images:
+    permissions:
+      packages: write
     runs-on: ubuntu-latest
     steps:
       - name: Checkout
@@ -60,7 +61,7 @@ jobs:
         with:
           registry: ghcr.io
           username: ${{ github.repository_owner }}
-          password: ${{ secrets.CR_PAT }}
+          password: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Login to Quay Container Registry
         uses: docker/login-action@v2