diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index c40e8f7f..a23e868a 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -9,6 +9,7 @@ jobs:
     runs-on: ubuntu-latest
     permissions:
       contents: write
+      id-token: write
     outputs:
       self_mutation_happened: ${{ steps.self_mutation.outputs.self_mutation_happened }}
     env:
diff --git a/.projenrc.ts b/.projenrc.ts
index dccb27a7..5464be71 100644
--- a/.projenrc.ts
+++ b/.projenrc.ts
@@ -72,19 +72,16 @@ const project = new awscdk.AwsCdkConstructLibrary({
 });
 
 
-// (project.buildWorkflow?.["workflow"] as GithubWorkflow).file?.addOverride(
-//   "jobs.build.permissions.id-token",
-//   "write"
-// );
+//TODO: https://github.com/projen/projen/issues/2675
+(project.buildWorkflow?.["workflow"] as GithubWorkflow).file?.addOverride(
+  "jobs.build.permissions.id-token",
+  "write"
+);
 (project.buildWorkflow?.["workflow"] as GithubWorkflow).file?.addOverride(
   `jobs.build.steps.0.with.token`,
   "${{ secrets.PROJEN_GITHUB_TOKEN }}"
 );
 
-
-
-
-
 //console.log(project.buildWorkflow?.["workflow"]);
 
 //console.log((project.buildWorkflow?.["workflow"] as GithubWorkflow));