From cdbe719650999acd1c18bf7d17d4a9e3944f7314 Mon Sep 17 00:00:00 2001
From: "Iain J. Reid" <iainreid382@gmail.com>
Date: Sat, 4 Nov 2023 10:22:43 +0000
Subject: [PATCH] chore(ci): Enable package provenance

---
 .github/workflows/build.yml | 4 ++++
 package.json                | 3 ++-
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index b8368d4..d76156e 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -6,6 +6,10 @@ jobs:
   build:
     runs-on: ubuntu-latest
 
+    permissions:
+      contents: write # Required to publish a release via GitHub
+      id-token: write # Required for NPM provenance via OIDC
+
     steps:
     - name: Checkout
       uses: actions/checkout@v3
diff --git a/package.json b/package.json
index e312876..28e0f43 100644
--- a/package.json
+++ b/package.json
@@ -27,7 +27,8 @@
     "typescript": "^4.7.4"
   },
   "publishConfig": {
-    "access": "public"
+    "access": "public",
+    "provenance": true
   },
   "repository": {
     "type": "git",