From 06a437ec3decaacec2ecf63048fe3e79df4fbf78 Mon Sep 17 00:00:00 2001
From: matthewtoma-idme <matthew.toma@id.me>
Date: Wed, 1 Apr 2026 16:08:47 -0700
Subject: [PATCH] Add release environment to release workflow

Restricts release workflow to protected branches only.
Environment managed via terraform-github.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 .github/workflows/release.yml | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 57e2a34..2233d49 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -16,8 +16,7 @@ on:
 jobs:
   release:
     runs-on: ubuntu-latest
-    # TODO: Add `environment: release` after testing, then create the environment
-    # in repo Settings > Environments with "Protected branches only" deployment policy
+    environment: release
     permissions:
       contents: write
       packages: write