feat: add docs to secret distribution anchors#85
Merged
Conversation
Adds the docs repo (Mintlify site for docs.jacobpevans.com) to both _github_app_repos and _all_repos so it receives: - OPENROUTER_API_KEY (via _all_repos) - OPENROUTER_BASE_URL (via _all_repos) - GH_APP_CLAUDE_BOT_ID variable (via _github_app_repos) - GH_APP_CLAUDE_BOT_PRIVATE_KEY (via _github_app_repos) - All other broadly-distributed secrets This unblocks wiring the standard ai-workflows callers (issue-triage, issue-resolver, ci-fix, final-pr-review, project-router, post-merge-docs-review) in the docs repo. Without these secrets, every caller fails at the first claude-code-action step. After merge, sync-secrets.yml runs on push and distributes automatically. The fine-grained PAT must also include JacobPEvans/docs in its repository access list (manual GitHub Settings step) or the sync workflow will fast-fail with the unreachable repo listed. Assisted-by: Claude <noreply@anthropic.com>
![gemini-code-assist[bot]](https://avatars.githubusercontent.com/in/956858?s=60&v=4){kind=small}
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
docs(Mintlify site for docs.jacobpevans.com) to both_github_app_reposand_all_reposanchors insecrets-config.yml.Why now
The docs repo currently has zero secrets and is not on either anchor list, so any ai-workflows caller wired today would fail at the first
claude-code-actionstep with "secret not found." This is the unblocking change.After merge,
sync-secrets.ymlruns on push to main and auto-distributes:OPENROUTER_API_KEY+OPENROUTER_BASE_URL(via_all_repos)GH_APP_CLAUDE_BOT_IDvariable +GH_APP_CLAUDE_BOT_PRIVATE_KEYsecret (via_github_app_repos)Required manual step before sync will succeed
Per
TROUBLESHOOTING.md, the fine-grained PATGH_PAT_SECRETS_SYNC_ACTIONneedsJacobPEvans/docsadded to its repository access list (GitHub Settings → Developer settings → Fine-grained tokens). The sync workflow fast-fails with the exact repo name if access is missing.Test plan
JacobPEvans/docsgh run watch --repo JacobPEvans/secrets-syncshows the sync workflow completinggh secret list --repo JacobPEvans/docsreturns ~10 rows includingOPENROUTER_API_KEYgh variable list --repo JacobPEvans/docsreturns at leastGH_APP_CLAUDE_BOT_IDAssisted-by: Claude noreply@anthropic.com