privilegedescalation/headlamp-plugin-template
12
0
Fork 0
Code Issues 1 Pull Requests 1 Actions Packages Projects Releases 1 Wiki Activity

fix(workflows): add pull-requests permission and secrets: inherit to release

Browse Source 
The shared plugin-release.yaml reusable workflow declares pull-requests: write
and uses it to create/merge the release PR. Calling workflows must grant all
permissions declared by reusable workflows or the job fails at startup.

Also adds secrets: inherit so org-level RELEASE_APP_ID and RELEASE_APP_PRIVATE_KEY
are forwarded to the external reusable workflow — without this they arrive empty
and the release is silently skipped.

Co-Authored-By: Paperclip <noreply@paperclip.ing>
This commit is contained in:
Hugh Hackman
2026-03-21 07:58:50 +00:00
parent 9da27f4186
commit f40ecbb899
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.github/workflows/release.yaml
+2
View File
@@ -10,9 +10,11 @@ on:
permissions: permissions:
contents: write contents: write
pull-requests: write
jobs: jobs:
release: release:
uses: privilegedescalation/.github/.github/workflows/plugin-release.yaml@main uses: privilegedescalation/.github/.github/workflows/plugin-release.yaml@main
with: with:
version: ${{ inputs.version }} version: ${{ inputs.version }}
secrets: inherit