Skip to content

fix: add missing permissions for release-please workflow #210

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jul 7, 2025
Merged

fix: add missing permissions for release-please workflow #210

merged 1 commit into from
Jul 7, 2025

Conversation

@casibbald
Copy link
Collaborator

@casibbald casibbald commented Jul 7, 2025

fix: add missing permissions for release-please workflow

🔧 Fix Release-Please Permissions

This PR fixes the permissions issue that was preventing release-please from creating labels and managing the release process properly.

🚨 Problem

Release-please was failing with authorization errors:

Error: release-please failed: You do not have permission to create labels on this repository.: {"resource":"Repository","field":"label","code":"unauthorized"}

Solution

Added missing permissions to the release-please job in .github/workflows/ci.yaml:

permissions:
  contents: write
  pull-requests: write
  issues: write              # ← NEW: Required for label creation and management
  repository-projects: write # ← NEW: Required for project board management

🎯 What This Enables

  • Label Management: Release-please can create and manage release labels automatically
  • Issue Integration: Can link releases to issues and milestones
  • Project Boards: Can update project boards with release information
  • Full Automation: Enables complete hands-off release workflow

🔍 Technical Details

  • issues: write: Allows creation/modification of labels, milestones, and issue linking
  • repository-projects: write: Enables project board updates and automation
  • No Breaking Changes: Only adds permissions, doesn't modify existing functionality

🧪 Testing

  • ✅ Workflow syntax is valid
  • ✅ Permissions follow GitHub's least-privilege principle
  • ✅ Compatible with existing workflow structure

📋 Dependencies

This PR works in conjunction with PR #209 (the main migration and release-please implementation). Both PRs together provide:

  1. PR chore(main): release 0.17.0 #209: Complete migration to weaveworks + release-please setup
  2. This PR: Permissions fix for full functionality

🚀 Expected Outcome

After merging both PRs, the release workflow will:

  1. Automatically analyze conventional commits on main
  2. Create release PRs with proper labeling and categorization
  3. Generate releases with changelogs when release PRs are merged
  4. Publish container images and Helm charts to ghcr.io

This small but critical fix ensures the automated release system works flawlessly! 🎯

@casibbald
fix: add missing permissions for release-please workflow
0dab7f8 
- Add issues:write permission for label creation
- Add repository-projects:write permission for project management
- Resolves release-please authorization errors when creating labels
@casibbald casibbald merged commit 90d7896 into main Jul 7, 2025
5 checks passed
@casibbald casibbald deleted the fix/release-please-permissions branch July 7, 2025 18:49
@github-actions github-actions bot mentioned this pull request Jul 7, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@casibbald