diff --git a/.github/workflows/ci-systemd-release.yml b/.github/workflows/ci-systemd-release.yml
index 40d329c05c..45157fac6c 100644
--- a/.github/workflows/ci-systemd-release.yml
+++ b/.github/workflows/ci-systemd-release.yml
@@ -5,17 +5,13 @@ on:
     tags:
       - "*"
 
-# Declare default permissions as read only.
-permissions:
-  id-token: write # requires for cosign keyless signing
-  contents: write # requires for goreleaser to write to GitHub release
-
 jobs:
   goreleaser:
     runs-on: ubuntu-20.04
     if: github.repository == 'kubearmor/kubearmor'
     permissions:
-      contents: write
+      id-token: write # requires for cosign keyless signing
+      contents: write # requires for goreleaser to write to GitHub release
     steps:
       - uses: actions/checkout@v3
         with:
diff --git a/KubeArmor/.goreleaser.yaml b/KubeArmor/.goreleaser.yaml
index 85bdaddb6b..8dd0c2f153 100644
--- a/KubeArmor/.goreleaser.yaml
+++ b/KubeArmor/.goreleaser.yaml
@@ -14,8 +14,6 @@ signs:
     certificate: '${artifact}.cert'
     args:
       - sign-blob
-      - '--oidc-issuer=https://token.actions.githubusercontent.com'
-      - '--oidc-provider=github-actions'
       - '--output-certificate=${certificate}' 
       - '--output-signature=${signature}'
       - '${artifact}'