From 7bb6357e368d9352808db1ffc2ffe1579d476c1f Mon Sep 17 00:00:00 2001 From: "Luke W. Johnston" Date: Tue, 13 May 2025 16:09:52 +0200 Subject: [PATCH 1/2] ci: :construction_worker: use GitHub App token for syncing files --- .github/workflows/sync-files.yml | 14 +++++++++++--- 1 file changed, 11 insertions(+), 3 deletions(-) diff --git a/.github/workflows/sync-files.yml b/.github/workflows/sync-files.yml index 10c1d20..3fc87da 100644 --- a/.github/workflows/sync-files.yml +++ b/.github/workflows/sync-files.yml @@ -9,17 +9,25 @@ jobs: sync: runs-on: ubuntu-latest steps: + - uses: actions/create-github-app-token@v2 + id: app-token + with: + app-id: ${{ vars.SYNC_FILES_APP_ID }} + private-key: ${{ secrets.SYNC_FILES_TOKEN }} + - name: Checkout Repository uses: actions/checkout@main + with: + token: ${{ steps.app-token.outputs.token }} - name: Run GitHub File Sync uses: BetaHuhn/repo-file-sync-action@v1 with: - GH_PAT: ${{ secrets.SYNC_PAT }} + GH_PAT: ${{ steps.app-token.outputs.token }} ASSIGNEES: lwjohnst86 IS_FINE_GRAINED: true - GIT_USERNAME: lwjohnst86 - GIT_EMAIL: lwjohnst@gmail.com + GIT_USERNAME: github-actions[bot] + GIT_EMAIL: 41898282+github-actions[bot]@users.noreply.github.com COMMIT_PREFIX: "chore(sync): :hammer: " BRANCH_PREFIX: chore TEAM_REVIEWERS: admin From a4bf672c76c8ad3f660aecc3376a04111f05bf58 Mon Sep 17 00:00:00 2001 From: "Luke W. Johnston" Date: Tue, 13 May 2025 16:16:03 +0200 Subject: [PATCH 2/2] ci: :pushpin: use v4 checkout --- .github/workflows/sync-files.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sync-files.yml b/.github/workflows/sync-files.yml index 3fc87da..603e188 100644 --- a/.github/workflows/sync-files.yml +++ b/.github/workflows/sync-files.yml @@ -16,7 +16,7 @@ jobs: private-key: ${{ secrets.SYNC_FILES_TOKEN }} - name: Checkout Repository - uses: actions/checkout@main + uses: actions/checkout@v4 with: token: ${{ steps.app-token.outputs.token }}