This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
In the exercise:
https://github.com/skills/publish-packages/blob/main/.github/steps/4-pull-your-image.md
it is stated "that Before we can use this Docker image, you will need to generate a personal access token that contains the following permissions:"
...
write:packages
...
The permission write:packages is not needed to pull the Docker image. To follow the least privilege principle, that permission should be removed from the list.
This question is related to the following Learning Module
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 13%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKP%3C/text%3E%3C/svg%3E)
Hi Carlos Quintero,
Welcome to the Microsoft Q&A forum.
Thank you for bringing this issue to our attention. We will update you as soon as possible.