remove VAULT token retrieve from build

Author: ethan-ozelius-contentful

.github/workflows/build.yaml

@@ -1,31 +1,18 @@
 name: Build
 
 permissions:
-  contents: read
+  contents: write
+  id-token: write
+  actions: read
 
 on:
   workflow_call:
-    secrets:
-      VAULT_URL:
-        required: true
 
 jobs:
   build:
     runs-on: ubuntu-latest
 
     steps:
-      - name: 'Retrieve Secrets from Vault'
-        id: vault
-        uses: hashicorp/[email protected]
-        with:
-          url: ${{ secrets.VAULT_URL }}
-          role: ${{ github.event.repository.name }}-github-action
-          method: jwt
-          path: github-actions
-          exportEnv: false
-          secrets: |
-            github/token/${{ github.event.repository.name }}-semantic-release token | GITHUB_TOKEN_FROM_VAULT;
-
       - name: Checkout code
         uses: actions/checkout@v5
 

.github/workflows/main.yaml

@@ -9,8 +9,6 @@ on:
 jobs:
   build:
     uses: ./.github/workflows/build.yaml
-    secrets:
-      VAULT_URL: ${{ secrets.VAULT_URL }}
 
   check:
     needs: build