cliffchapmanrbx
commented
4 years ago This looks easier than I thought: https://www.npmjs.com/package/@octokit/app
Open cliffchapmanrbx opened 4 years ago
cliffchapmanrbx
commented
4 years ago This looks easier than I thought: https://www.npmjs.com/package/@octokit/app
Currently the app needs a PAT (tied to a specific account) to perform auth for the remote repository. Modify this to allow for GitHub App auth instead, allowing the action to authenticate as an app. The app should only need repo read/write scopes to be able to read and write to the cla.json file in the remote repo, nothing more.