diff --git a/.github/workflows/dependabot.yml b/.github/workflows/dependabot.yml
index 6dc91e3..3c9b390 100644
--- a/.github/workflows/dependabot.yml
+++ b/.github/workflows/dependabot.yml
@@ -17,6 +17,9 @@ jobs:
       github.event.workflow_run.event == 'pull_request' &&
       github.event.workflow_run.conclusion == 'success' &&
       github.actor == 'dependabot[bot]'
+    permissions:
+      contents: write
+      pull-requests: write
     steps:
       - name: "Approve pull request"
         uses: "juliangruber/approve-pull-request-action@v2"
@@ -36,4 +39,4 @@ jobs:
               owner: repository.owner,
               pull_number: pullRequest.number,
               repo: repository.repo,
-            })
\ No newline at end of file
+            })