diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
index 24b259a3e8..b8cca30c54 100644
--- a/.github/workflows/build.yaml
+++ b/.github/workflows/build.yaml
@@ -3,11 +3,16 @@ on:
   push:
     branches:
       - 'main'
+      - 'release*'
   pull_request:
     branches:
       - 'main'
+      - 'release*'
 
-permissions: read-all
+permissions: 
+  contents: read
+  packages: write
+  id-token: write 
 
 jobs:
   pre-checks:
diff --git a/.github/workflows/helm-release.yaml b/.github/workflows/helm-release.yaml
index 460d179878..59b572a907 100644
--- a/.github/workflows/helm-release.yaml
+++ b/.github/workflows/helm-release.yaml
@@ -4,7 +4,10 @@ on:
     tags:
       - 'helm-chart-v*'
 
-permissions: read-all
+permissions: 
+  contents: read
+  packages: write
+  id-token: write 
 
 jobs:
   helm-tests:
diff --git a/.github/workflows/helm-test.yaml b/.github/workflows/helm-test.yaml
index 0898ab6d6e..50acd7ddce 100644
--- a/.github/workflows/helm-test.yaml
+++ b/.github/workflows/helm-test.yaml
@@ -3,6 +3,7 @@ on:
   pull_request:
     branches:
       - 'main'
+      - 'release*'
     paths:
       - 'charts/kyverno/**'
       - '.github/workflows/helm-test.yaml'
diff --git a/.github/workflows/image.yaml b/.github/workflows/image.yaml
index 259bc1093a..8fc14d0087 100644
--- a/.github/workflows/image.yaml
+++ b/.github/workflows/image.yaml
@@ -3,6 +3,7 @@ on:
   push:
     branches:
       - 'main'
+      - 'release*'
 
 permissions:
   contents: read
diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
index d988ee99a5..3768aad028 100644
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@@ -4,7 +4,10 @@ on:
     tags:
       - 'v*'
 
-permissions: read-all
+permissions:
+  contents: read
+  packages: write
+  id-token: write 
 
 jobs:
   release-init-kyverno: