diff --git a/.github/workflows/buidl_and_push_ghcr.yml b/.github/workflows/buidl_and_push_ghcr.yml
index fa71a09..6fa24f0 100644
--- a/.github/workflows/buidl_and_push_ghcr.yml
+++ b/.github/workflows/buidl_and_push_ghcr.yml
@@ -3,12 +3,18 @@ name: Docker Image CI
 on:
   workflow_dispatch:  # 手动触发
 
+# 显式声明权限
+permissions:
+  packages: write  # 允许写入 packages
+  contents: read   # 允许读取仓库内容
+
 jobs:
   build:
     runs-on: ubuntu-latest
 
     steps:
-    - uses: actions/checkout@v4
+    - name: Checkout code
+      uses: actions/checkout@v4
 
     # 设置 Docker Buildx
     - name: Set up Docker Buildx
@@ -19,15 +25,17 @@ jobs:
       uses: docker/login-action@v3
       with:
         registry: ghcr.io
-        username: ${{ github.actor }}  # 你的 GitHub 用户名
+        username: ${{ github.actor }}  # 你的用户名: zeroornull
         password: ${{ secrets.GITHUB_TOKEN }}
 
-    # 构建并推送 Docker 镜像，使用个人命名空间
+    # 构建并推送 Docker 镜像
     - name: Build and push Docker image
       run: |
-        # 使用 github.actor 作为命名空间，确保是个人账户
+        # 明确使用你的个人命名空间
+        IMAGE_NAME="ghcr.io/zeroornull/my-image-name"
+        echo "Pushing to: $IMAGE_NAME"
         docker build . --file Dockerfile \
-          --tag ghcr.io/${{ github.actor }}/my-docs:latest \
-          --tag ghcr.io/${{ github.actor }}/my-docs:${{ github.sha }}
-        docker push ghcr.io/${{ github.actor }}/my-docs:latest
-        docker push ghcr.io/${{ github.actor }}/my-docs:${{ github.sha }}
+          --tag "$IMAGE_NAME:latest" \
+          --tag "$IMAGE_NAME:${{ github.sha }}"
+        docker push "$IMAGE_NAME:latest"
+        docker push "$IMAGE_NAME:${{ github.sha }}"