ci(deps): Bump actions/create-github-app-token from 1.12.0 to 2.0.6 (#16436)

dependabot[bot] · web-flow · commit ab6b70fa44d2 · 2025-07-07T12:32:38.000Z
Bumps [actions/create-github-app-token](https://github.com/actions/create-github-app-token) from 1.12.0 to 2.0.6. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/create-github-app-token/releases">actions/create-github-app-token's releases</a>.</em></p> <blockquote> <h2>v2.0.6</h2> <h2><a href="https://github.com/actions/create-github-app-token/compare/v2.0.5...v2.0.6">2.0.6</a> (2025-05-03)</h2> <h3>Bug Fixes</h3> <ul> <li>replace <code>-</code> with <code>_</code> (<a href="https://redirect.github.com/actions/create-github-app-token/issues/246">#246</a>) (<a href="https://github.com/actions/create-github-app-token/commit/333678481b1f02ee31fa1443aba4f1f7cb5b08b5">3336784</a>)</li> </ul> <h2>v2.0.5</h2> <h2><a href="https://github.com/actions/create-github-app-token/compare/v2.0.4...v2.0.5">2.0.5</a> (2025-05-02)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>deps:</strong> bump the production-dependencies group with 3 updates (<a href="https://redirect.github.com/actions/create-github-app-token/issues/240">#240</a>) (<a href="https://github.com/actions/create-github-app-token/commit/d64d7d73555d3f2cb08ce64bdd812e49308a2905">d64d7d7</a>)</li> </ul> <h2>v2.0.4</h2> <h2><a href="https://github.com/actions/create-github-app-token/compare/v2.0.3...v2.0.4">2.0.4</a> (2025-05-02)</h2> <h3>Bug Fixes</h3> <ul> <li>permission input handling (<a href="https://redirect.github.com/actions/create-github-app-token/issues/243">#243</a>) (<a href="https://github.com/actions/create-github-app-token/commit/2950cbc446a8d3030ea17d3f7cbdd3c0fce4b0f5">2950cbc</a>)</li> </ul> <h2>v2.0.3</h2> <h2><a href="https://github.com/actions/create-github-app-token/compare/v2.0.2...v2.0.3">2.0.3</a> (2025-05-01)</h2> <h3>Bug Fixes</h3> <ul> <li><strong>README:</strong> use <code>v2</code> in examples (<a href="https://redirect.github.com/actions/create-github-app-token/issues/234">#234</a>) (<a href="https://github.com/actions/create-github-app-token/commit/9ba274d954c9af64fbf4cec63082d0e3f57e9b5f">9ba274d</a>), closes <a href="https://redirect.github.com/actions/create-github-app-token/issues/232">#232</a></li> <li>use <code>core.getBooleanInput()</code> to retrieve boolean input values (<a href="https://redirect.github.com/actions/create-github-app-token/issues/223">#223</a>) (<a href="https://github.com/actions/create-github-app-token/commit/c3c17c79ccedec31f588e88d6ad5ff9036afe580">c3c17c7</a>)</li> </ul> <h2>v2.0.2</h2> <h2><a href="https://github.com/actions/create-github-app-token/compare/v2.0.1...v2.0.2">2.0.2</a> (2025-04-03)</h2> <h3>Bug Fixes</h3> <ul> <li>improve log messages for token creation (<a href="https://redirect.github.com/actions/create-github-app-token/issues/226">#226</a>) (<a href="https://github.com/actions/create-github-app-token/commit/eaef29498fbc63724aabd0a6e832efd41baf2cc7">eaef294</a>)</li> </ul>  </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/create-github-app-token/commit/df432ceedc7162793a195dd1713ff69aefc7379e"><code>df432ce</code></a> build(release): 2.0.6 [skip ci]</li> <li><a href="https://github.com/actions/create-github-app-token/commit/333678481b1f02ee31fa1443aba4f1f7cb5b08b5"><code>3336784</code></a> fix: replace <code>-</code> with <code>_</code> (<a href="https://redirect.github.com/actions/create-github-app-token/issues/246">#246</a>)</li> <li><a href="https://github.com/actions/create-github-app-token/commit/db3cdf40984fe6fd25ae19ac2bf2f4886ae8d959"><code>db3cdf4</code></a> build(release): 2.0.5 [skip ci]</li> <li><a href="https://github.com/actions/create-github-app-token/commit/d64d7d73555d3f2cb08ce64bdd812e49308a2905"><code>d64d7d7</code></a> fix(deps): bump the production-dependencies group with 3 updates (<a href="https://redirect.github.com/actions/create-github-app-token/issues/240">#240</a>)</li> <li><a href="https://github.com/actions/create-github-app-token/commit/1b6f53e48e3bd5e9fbd610599fc41fca986c51e9"><code>1b6f53e</code></a> build(deps-dev): bump the development-dependencies group across 1 directory w...</li> <li><a href="https://github.com/actions/create-github-app-token/commit/061a84d5f55008a6dfb441735e1568fcb8da8b50"><code>061a84d</code></a> build(deps-dev): bump <code>@​octokit/openapi</code> from 18.2.0 to 19.0.0 (<a href="https://redirect.github.com/actions/create-github-app-token/issues/242">#242</a>)</li> <li><a href="https://github.com/actions/create-github-app-token/commit/c8f34a61a85667dfbbbc74c5468935fc8a369720"><code>c8f34a6</code></a> build(deps): bump stefanzweifel/git-auto-commit-action from 5.1.0 to 5.2.0 in...</li> <li><a href="https://github.com/actions/create-github-app-token/commit/4821f52fa7a8e45784f1d99cdb1c27bec9f00720"><code>4821f52</code></a> build(release): 2.0.4 [skip ci]</li> <li><a href="https://github.com/actions/create-github-app-token/commit/2950cbc446a8d3030ea17d3f7cbdd3c0fce4b0f5"><code>2950cbc</code></a> fix: permission input handling (<a href="https://redirect.github.com/actions/create-github-app-token/issues/243">#243</a>)</li> <li><a href="https://github.com/actions/create-github-app-token/commit/30bf6253fa41bdc8d1501d202ad15287582246b4"><code>30bf625</code></a> build(release): 2.0.3 [skip ci]</li> <li>Additional commits viewable in <a href="https://github.com/actions/create-github-app-token/compare/d72941d797fd3113feb6b93fd0dec494b13a2547...df432ceedc7162793a195dd1713ff69aefc7379e">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/create-github-app-token&package-manager=github_actions&previous-version=1.12.0&new-version=2.0.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> > **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days. Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
diff --git a/.github/workflows/auto-release.yml b/.github/workflows/auto-release.yml
@@ -15,7 +15,7 @@ jobs:
     steps:
       - name: Get auth token
         id: token
-        uses: actions/create-github-app-token@d72941d797fd3113feb6b93fd0dec494b13a2547 # v1.12.0
+        uses: actions/create-github-app-token@df432ceedc7162793a195dd1713ff69aefc7379e # v2.0.6
         with:
           app-id: ${{ vars.SENTRY_RELEASE_BOT_CLIENT_ID }}
           private-key: ${{ secrets.SENTRY_RELEASE_BOT_PRIVATE_KEY }}
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -19,7 +19,7 @@ jobs:
     steps:
       - name: Get auth token
         id: token
-        uses: actions/create-github-app-token@d72941d797fd3113feb6b93fd0dec494b13a2547 # v1.12.0
+        uses: actions/create-github-app-token@df432ceedc7162793a195dd1713ff69aefc7379e # v2.0.6
         with:
           app-id: ${{ vars.SENTRY_RELEASE_BOT_CLIENT_ID }}
           private-key: ${{ secrets.SENTRY_RELEASE_BOT_PRIVATE_KEY }}
