speakeasy-api · ThomasRooney · Mar 6, 2025 · Mar 6, 2025 · Mar 6, 2025
diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
@@ -0,0 +1,38 @@
+name: Release
+
+on:
+  push:
+    branches:
+      - main
+
+jobs:
+  release:
+    runs-on: ubuntu-latest
+
+    permissions:
+      contents: write
+
+    steps:
+      - name: Checkout Code
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
+
+      - id: conventionalcommits
+        name: Conventional Commits
+        uses: TriPSs/conventional-changelog-action@67139193614f5b9e8db87da1bd4240922b34d765 # v6.0.0
+        with:
+          github-token: ${{ secrets.GITHUB_TOKEN }}
+          skip-commit: "true"
+          output-file: "false"
+          create-summary: true
+          preset: conventionalcommits
+
+      - name: Create Release
+        uses: actions/create-release@0cb9c9b65d5d1901c1f53e5e66eaf4afd303e70e # v1.1.4
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        with:
+          tag_name: ${{ steps.conventionalcommits.outputs.tag }}
+          release_name: ${{ steps.conventionalcommits.outputs.tag }}
+          body: ${{ steps.conventionalcommits.outputs.clean_changelog }}
diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml
@@ -0,0 +1,38 @@
+name: Test
+
+on:
+  pull_request:
+    branches:
+      - main
+    types:
+    - opened
+    - edited
+    - synchronize
+    - reopened
+
+jobs:
+  build:
+    name: Conventional pull request names
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - uses: amannn/action-semantic-pull-request@0723387faaf9b38adef4775cd42cfd5155ed6017 # v5.5.3
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+  build-test:
+    name: Build & Test
+    if: ${{ github.event.pull_request.draft == false }}
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+        with:
+          submodules: true
+      - name: Set up Go
+        uses: actions/setup-go@3041bf56c941b39c61721a86cd11f3bb1338122a # v5.2.0
+        with:
+          go-version-file: "go.mod"
+      - name: Set up gotestfmt
+        run: go install github.com/gotesttools/gotestfmt/v2/cmd/gotestfmt@latest
+      - name: Build
+        run: go build ./...
+      - run: go test -json -v -p 1 ./... | gotestfmt
diff --git a/internal/clientcredentials/service_test.go b/internal/clientcredentials/service_test.go
@@ -87,11 +87,11 @@ func TestHandleTokenRequest(t *testing.T) {
 			wantStatus: http.StatusUnauthorized,
 		},
 		{
-			name: "missing required scope in basic auth",
+			name: "unexpected scope in basic auth",
 			setupRequest: func() *http.Request {
 				form := url.Values{}
 				form.Set("grant_type", "client_credentials")
-				form.Set("scope", "read") // missing write scope
+				form.Set("scope", "unknown") // missing write scope
 
 				req := httptest.NewRequest(http.MethodPost, "/token", strings.NewReader(form.Encode()))
 				req.Header.Set("Content-Type", "application/x-www-form-urlencoded")