Conversation
Adds a `kosli attest pr github` step at the end of the reset-drift-detection job so the PR that triggered the apply is recorded against the Kosli trail. The Kosli CLI auto-detects the org, repo, and commit from the GitHub Actions environment, and the flow/trail/host/api-token come from existing env vars on the job. A new `github_token` secret is added to the reusable workflow inputs to authenticate the lookup; callers should pass `secrets.GITHUB_TOKEN`. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
To support a gradual rollout, callers should be able to adopt the new reusable-workflow version without immediately supplying a GitHub token. The github_token secret is already declared `required: false`, but the attest-PR step previously ran unconditionally and would fail with an empty token. Gate the step on `secrets.github_token != ''` so it is skipped when no token is passed, and update the secret description to match. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
The `kosli attest pr github` step queries the GitHub API to find the pull request associated with the merge commit, which requires the GITHUB_TOKEN to carry the `pull-requests: read` scope. Declare it on the job so the token used inside the reusable workflow has the permission it needs. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Adds a kosli-attest step to the apply workflow, to attest the PR to Kosli.