diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index 10222cafc0..495fc83e63 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -19,6 +19,7 @@ permissions:
   issues: write
   pull-requests: write
   actions: write
+  oidc: write
 
 jobs:
   core:
diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml
index 2304d2a8cf..0fb4b8984d 100644
--- a/.github/workflows/lint.yml
+++ b/.github/workflows/lint.yml
@@ -19,6 +19,9 @@ on:
         required: true
         type: string
 
+permissions:
+  oidc: write
+
 jobs:
   lint-skip:
     name: lint skip
@@ -53,7 +56,9 @@ jobs:
     steps:
       - name: Checkout
         uses: actions/checkout@v4
-      - uses: depot/setup-action@v1        
+      - uses: depot/setup-action@v1
+        with:
+          oidc: true              
       - name: Install Dev Container CLI
         run: npm install -g @devcontainers/cli@0.80.0
       - name: Lint and Unit Test All JavaScript Code
diff --git a/.github/workflows/login-container.yml b/.github/workflows/login-container.yml
index 5137213cc4..ec7692e8d2 100644
--- a/.github/workflows/login-container.yml
+++ b/.github/workflows/login-container.yml
@@ -20,6 +20,7 @@ on:
 
 permissions:
   packages: write
+  oidc: write
 
 env:
   default_labels: |
@@ -36,6 +37,8 @@ jobs:
     steps:
       - uses: actions/checkout@v4
       - uses: depot/setup-action@v1
+        with:
+          oidc: true  
       - name: Login meta
         id: login-meta
         uses: docker/metadata-action@v5
@@ -55,7 +58,6 @@ jobs:
       - name: Bake login multi-arch
         uses: depot/bake-action@v1
         env:
-          DEPOT_TOKEN: ${{ secrets.DEPOT_TOKEN }}
           NODE_VERSION: ${{ inputs.node_version }}
         with:
           push: true
diff --git a/.github/workflows/login-integration-test.yml b/.github/workflows/login-integration-test.yml
index 4ae0defe56..d808496f4d 100644
--- a/.github/workflows/login-integration-test.yml
+++ b/.github/workflows/login-integration-test.yml
@@ -7,6 +7,10 @@ on:
         required: true
         type: string
 
+permissions:
+  packages: write
+  oidc: write
+
 jobs:
   login-integration-test:
     name: login-integration-test
@@ -15,6 +19,8 @@ jobs:
       - name: Checkout
         uses: actions/checkout@v4
       - uses: depot/setup-action@v1        
+        with:
+          oidc: true      
       - name: Install Dev Container CLI
         run: npm install -g @devcontainers/cli@0.80.0
       - name: Run Integration Tests against the Login and a Mocked Zitadel API