Closed roberthjaplaio closed 1 month ago
While this is good for the release dispatch, no ci is run on the release pull request which in the end didn't work out for me so I think this suggestion is unlikely to work out for many people. I went with a token created for a github app
I wanted to point out a workaround and ask if you see any downsides to using it for triggering subsequent github actions from release please without having to use a personal access token.
The referenced documentation from github (https://docs.github.com/en/actions/using-workflows/triggering-a-workflow#triggering-a-workflow-from-a-workflow) mentions that
workflow_dispatch
can be used to trigger subsequent actions.So I've set up the following workflow for release please:
This will trigger my
release.yml
workflow when a release is created, and works like a release.published event would have. It requires an additional permission,actions: write
and my release.yml must trigger on workflow dispatch.Do you see any issues with using this workaround? For our use case using a PAT seems strange as all releases would be attributed to a person and we'd need to stay on top rolling it periodically.
Are there any other methods you recommend for handling this? Do you recommend using the probot instead for use cases where PAT does not fit?