add id-token: write

Signed-off-by: Steve Taylor <steve@deployhub.com>

Author: sbtaylor15

.github/workflows/build-push-chart.yml

@@ -1,20 +1,16 @@
----
 name: Build/Push Image and Release Charts
-
-on:
+"on":
   pull_request:
     paths-ignore:
-      - "chart/**/Chart.yaml"
-      - "chart/**/values.yaml"
+      - chart/**/Chart.yaml
+      - chart/**/values.yaml
   push:
     branches:
       - main
     paths-ignore:
-      - "chart/**/Chart.yaml"
-      - "chart/**/values.yaml"
-
+      - chart/**/Chart.yaml
+      - chart/**/values.yaml
 permissions: read-all
-
 jobs:
   setenv:
     uses: ortelius/workflow-toolkit/.github/workflows/env-config-workflow.yml@c4e9eac57962580d434abd3fee4b46520596ee56
@@ -25,7 +21,6 @@ jobs:
       gh_sha: ${{ github.sha }}
       gh_repo: ${{ github.repository }}
       gh_run_number: ${{ github.run_number }}
-
   release:
     uses: ortelius/workflow-toolkit/.github/workflows/container-release-workflow.yml@c4e9eac57962580d434abd3fee4b46520596ee56
     needs: setenv
@@ -38,24 +33,28 @@ jobs:
     secrets:
       QUAY_USERID: ${{ secrets.QUAY_USERID }}
       QUAY_PASSWORD: ${{ secrets.QUAY_PASSWORD }}
-
+    permissions:
+      id-token: write
   trivy:
     permissions:
       security-events: write
       statuses: write
     uses: ortelius/workflow-toolkit/.github/workflows/trivy-scan-workflow.yml@c4e9eac57962580d434abd3fee4b46520596ee56
-    needs: [setenv, release]
+    needs:
+      - setenv
+      - release
     with:
       gh_repository_owner: ${{ github.repository_owner }}
       gh_event_name: ${{ github.event_name }}
       gh_ref: ${{ github.ref }}
       image_repo_tag: ${{ needs.setenv.outputs.image_repo_tag }}
-
   helm:
     permissions:
       contents: write
     uses: ortelius/workflow-toolkit/.github/workflows/helm-release-workflow.yml@c4e9eac57962580d434abd3fee4b46520596ee56
-    needs: [setenv, release]
+    needs:
+      - setenv
+      - release
     with:
       gh_repository_owner: ${{ github.repository_owner }}
       gh_event_name: ${{ github.event_name }}
@@ -71,10 +70,11 @@ jobs:
       GPG_PASSPHRASE: ${{ secrets.GPG_PASSPHRASE }}
       GPG_KEY: ${{ secrets.GPG_KEY }}
       gh_token: ${{ secrets.HELM_INDEXER_TOKEN }}
-
   sbom:
     uses: ortelius/workflow-toolkit/.github/workflows/sbom-generation-workflow.yml@c4e9eac57962580d434abd3fee4b46520596ee56
-    needs: [setenv, release]
+    needs:
+      - setenv
+      - release
     with:
       gh_repository_owner: ${{ github.repository_owner }}
       gh_event_name: ${{ github.event_name }}