From 3f18e72892c5b993947b9b7c0d96af4f2fa6f5e9 Mon Sep 17 00:00:00 2001 From: Guilherme Souza Date: Wed, 8 Oct 2025 06:59:30 -0300 Subject: [PATCH] ci: generate app token for release workflows --- .github/workflows/release-publish.yml | 8 +++++++- .github/workflows/release-tag.yml | 8 +++++++- 2 files changed, 14 insertions(+), 2 deletions(-) diff --git a/.github/workflows/release-publish.yml b/.github/workflows/release-publish.yml index 15bd46da0..2f4c5ff91 100644 --- a/.github/workflows/release-publish.yml +++ b/.github/workflows/release-publish.yml @@ -11,6 +11,12 @@ jobs: publish-packages: runs-on: ubuntu-latest steps: + - name: Generate token + id: app-token + uses: actions/create-github-app-token@v2 + with: + app-id: ${{ secrets.APP_ID }} + private-key: ${{ secrets.PRIVATE_KEY }} - name: Checkout uses: actions/checkout@v4 @@ -39,4 +45,4 @@ jobs: draft: false prerelease: false env: - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + GITHUB_TOKEN: ${{ steps.app-token.outputs.token }} diff --git a/.github/workflows/release-tag.yml b/.github/workflows/release-tag.yml index f1bbd38f7..27adb97fc 100644 --- a/.github/workflows/release-tag.yml +++ b/.github/workflows/release-tag.yml @@ -14,6 +14,12 @@ jobs: if: ${{ contains(github.event.head_commit.message, 'chore(release):') }} runs-on: ubuntu-latest steps: + - name: Generate token + id: app-token + uses: actions/create-github-app-token@v2 + with: + app-id: ${{ secrets.APP_ID }} + private-key: ${{ secrets.PRIVATE_KEY }} - name: Checkout uses: actions/checkout@v4 with: @@ -31,4 +37,4 @@ jobs: gh workflow run release-publish.yml \ --ref \$MELOS_PACKAGE_NAME-v\$MELOS_PACKAGE_VERSION env: - GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} \ No newline at end of file + GH_TOKEN: ${{ steps.app-token.outputs.token }} \ No newline at end of file