-
Even though the
$GITHUB_TOKEN
secret changes for each run, they appear to be using regular GitHub Application credentials tied to @github-actions and they don't expire until an hour after creation. I was able to use a token to post a status on the initial commit. Just something to keep in mind. -
There are some documented Workflow Limitations...although those seem to be for the previous HCL-based actions and might not be 100% applicable anymore.
-
Scheduled workflows run on the latest commit on the default branch.
I haven't seen a way to do this in the UI or from any of the checks/status APIs.
Testing branch protections.