Open Shuenhoy opened 1 month ago
You should use PAT to do that. And it should return that you have no permission to do that if you use secrets.GITHUB_TOKEN
.
I created #31094 to test whether action users have been allowed to merge a PR. Looks like it should have no permission to do that.
Description
I accidentally scheduled an automerge from API with
${{ secrets.GITHUB_TOKEN }}
in action (I should have used a PAT). And the PR got broken.Gitea Version
1.21.10
Can you reproduce the bug on the Gitea demo site?
No
Log Gist
No response
Screenshots
Git Version
No response
Operating System
No response
How are you running Gitea?
Docker
Database
PostgreSQL