diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 971eb5a..ebd3ae2 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -10,6 +10,9 @@ on:
       - ".gitignore"
       - "README.rst"
 
+permissions:
+  contents: read
+
 jobs:
   build-package:
     runs-on: ubuntu-latest
@@ -25,6 +28,11 @@ jobs:
 
       - run: make build
 
+      - uses: actions/upload-artifact@v4
+        with:
+          name: dist
+          path: ./dist/*
+
   publish-package:
     needs: build-package
     runs-on: ubuntu-latest
@@ -34,15 +42,11 @@ jobs:
     timeout-minutes: 20
     environment:
       name: testpypi
-      url: https://pypi.org/p/releasecmd
+      url: https://pypi.org/p/pathvalidate
     permissions:
       id-token: write  # IMPORTANT: this permission is mandatory for trusted publishing
 
     steps:
-      - uses: GitHubSecurityLab/actions-permissions/monitor@v1
-        with:
-          config: ${{ vars.PERMISSIONS_CONFIG }}
-
       - uses: actions/download-artifact@v4
         with:
           name: dist