update permissions #3

	name: Deploy

	on:
	workflow_dispatch:
	push:
	branches:
	- main

	env:
	NODE_ENV: nonlive

	permissions:
	contents: read
	id-token: write

	jobs:
	deploy:
	runs-on: ubuntu-latest
	if: >-
	!startsWith(github.event.head_commit.message, 'Initial commit') &&
	!startsWith(github.event.head_commit.message, '🤖') &&
	!contains(github.event.head_commit.message, '[skip ci]')
	steps:
	- uses: actions/checkout@v4
	- uses: actions/setup-node@v4
	with:
	node-version: "18"
	cache: yarn

	- run: yarn

	- uses: aws-actions/configure-aws-credentials@v4
	with:
	role-to-assume: arn:aws:iam::339712900631:role/OrganizationAccountAccessRole
	aws-region: us-east-1

	- run: yarn deploy --stage $NODE_ENV

Provide feedback