ci: update publish.yml to grant write permissions and use GITHUB_TOKEN

Author: bhovhannes

.github/workflows/publish.yml

@@ -18,10 +18,12 @@ jobs:
     environment: publish
     runs-on: ubuntu-latest
     permissions:
-      contents: read
+      contents: write
       id-token: write
     steps:
       - uses: actions/checkout@v4
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
       - name: Check if on main branch
         run: |
           if [[ $GITHUB_REF != 'refs/heads/main' ]]; then
@@ -45,4 +47,5 @@ jobs:
           git push origin main --follow-tags
       - run: npm publish --provenance --access public
         env:
-          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
+          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}