From 99a0cff16396abd7499b030164adfef2e608c53c Mon Sep 17 00:00:00 2001
From: Charly Gomez <charly.gomez@sentry.io>
Date: Wed, 18 Feb 2026 13:54:13 +0100
Subject: [PATCH] fix(ci): Add `id-token: write` permission to triage workflow

The `claude-code-action@v1` requires OIDC token access to authenticate.
Without the `id-token: write` permission, the workflow fails with
"Unable to get ACTIONS_ID_TOKEN_REQUEST_URL env variable".

Co-Authored-By: Claude <noreply@anthropic.com>
---
 .github/workflows/triage-issue.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/triage-issue.yml b/.github/workflows/triage-issue.yml
index d9462cbe0b57..a2f5f72ff8ff 100644
--- a/.github/workflows/triage-issue.yml
+++ b/.github/workflows/triage-issue.yml
@@ -24,6 +24,7 @@ jobs:
       contents: read
       issues: read
       pull-requests: read
+      id-token: write
     # Only run for Bug or Feature issues (automatic mode)
     if: |
       github.event_name == 'workflow_dispatch' ||