From 392f551e13ef4ac88eb522bd7c1966c92d1c9c04 Mon Sep 17 00:00:00 2001
From: Indranil <163458725+QuantumNeuralCoder@users.noreply.github.com>
Date: Thu, 30 Jan 2025 14:36:20 -0800
Subject: [PATCH 1/2] Update codecov.yml - update to codecov/codecov-action@v5.
 Use OIDC instead of codecov token.

---
 .github/workflows/codecov.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/codecov.yml b/.github/workflows/codecov.yml
index 2ed84470298db..3aed38c9fafa1 100644
--- a/.github/workflows/codecov.yml
+++ b/.github/workflows/codecov.yml
@@ -34,9 +34,9 @@ jobs:
         run: cd packages/aws-cdk && yarn test
 
       - name: Upload results to Codecov
-        uses: codecov/codecov-action@v4
+        uses: codecov/codecov-action@v5
         with:
           files: packages/aws-cdk/coverage/cobertura-coverage.xml,packages/aws-cdk-lib/coverage/cobertura-coverage.xml
           fail_ci_if_error: true
           flags: suite.unit
-          token: ${{ secrets.CODECOV_TOKEN }}
+          use_oidc: true

From 9de56d4f32f8a69887efb394d08299057895bfd9 Mon Sep 17 00:00:00 2001
From: Indranil <163458725+QuantumNeuralCoder@users.noreply.github.com>
Date: Fri, 31 Jan 2025 11:18:58 -0800
Subject: [PATCH 2/2] Update codecov.yml

---
 .github/workflows/codecov.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/codecov.yml b/.github/workflows/codecov.yml
index 3aed38c9fafa1..4b74efeb42b79 100644
--- a/.github/workflows/codecov.yml
+++ b/.github/workflows/codecov.yml
@@ -11,6 +11,8 @@ jobs:
     name: collect
     if: github.repository == 'aws/aws-cdk'
     runs-on: ubuntu-latest
+    permissions:
+      id-token: write
     steps:
       - name: Checkout
         uses: actions/checkout@v4