search

chainguard-dev / actions

A collection of reusable Github Actions workflows.
Apache License 2.0
108 stars 53 forks source link

Wolfi-dev OS actions - resource not accessible warning #417

Open xnox opened 2 months ago

xnox commented 2 months ago 
2024-04-10T11:55:40.7937799Z ##[group]Run thollander/actions-comment-pull-request@fabd468d3a1a0b97feee5f6b9e499eab0dd903f6
2024-04-10T11:55:40.7938384Z with:
2024-04-10T11:55:40.7938595Z   filePath: diff.log
2024-04-10T11:55:40.7939344Z   GITHUB_TOKEN: ***
2024-04-10T11:55:40.7939599Z   mode: upsert
2024-04-10T11:55:40.7939838Z   create_if_not_exists: true
2024-04-10T11:55:40.7940119Z ##[endgroup]
2024-04-10T11:55:41.0317790Z ##[error]Resource not accessible by integration
2024-04-10T11:55:41.0405868Z ##[group]Run actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3
2024-04-10T11:55:41.0406471Z with:
2024-04-10T11:55:41.0406723Z   path: ./packages/x86_64
./packages.log

As mentioned in annotations at https://github.com/wolfi-dev/os/actions/runs/8630712801

imjasonh commented 2 months ago

Resource not accessible by integration is an auth error, normally attributable to GH flakes.

I think this error is telling us that a workflow run from a PR from a branch on a fork can't post PR comments to the PR -- in this case, the package diff.

This can be safely ignored, but I agree that we shouldn't be in the business of ignoring warnings like this.

The medium-term solution is to move the PR diff bot out of GitHub Actions where it can more easily take advantage of OctoSTS to get tokens authorized to post comments.

xnox commented 2 months ago

Ok, wishlist.....