Open vinny-sabatini opened 1 year ago
What I've found so far:
pull_request
events from a forked repo do NOT have access to secrets, and get a read-only token to protect public repositories from malicious users. The pull_request_target
and workflow_run
events have access to secrets and get a read/write token.I found a couple of other interesting things that could help:
Also, now that #348 has been merged upgrading the codecov-action to v4.0.0, and we can no longer do tokenless uploads to CodeCov, we will run into this same issue with that action.
What happens?
When a pull request is created from a fork, the test action always fails
What were you expecting to happen?
I would expect that the jobs would be able to run successfully
Steps to reproduce:
Any errors, stacktrace, logs?
Here are the logs from the step:
Additional comments:
203 is an example PR where this issue happened