Fix workflow authentication and context access in publishVersionCheckResults#38
Conversation
…oper token configuration Co-authored-by: carstenartur <3164220+carstenartur@users.noreply.github.com>
Co-authored-by: carstenartur <3164220+carstenartur@users.noreply.github.com>
|
@copilot der build schlägt immer noch fehl |
Co-authored-by: carstenartur <3164220+carstenartur@users.noreply.github.com>
Co-authored-by: carstenartur <3164220+carstenartur@users.noreply.github.com>
I've identified and fixed the issue. The problem was that the reusable workflow ( Fixed in commits:
The workflow should now execute properly when a PR completes its checks successfully. Warning Firewall rules blocked me from connecting to one or more addresses (expand for details)I tried to connect to the following addresses, but was blocked by firewall rules:
If you need me to access, download, or install something from one of these locations, you can either:
|
|
@copilot Still failing |
The workflow is still failing on The fixes in this PR will only take effect once the PR is merged to master. Until then, the workflows on master will continue using the old, broken configuration that references the external workflow. To verify the fix works, you'll need to merge this PR to master first. |
The
Publish Version Check Resultsworkflow fails with authentication errors and workflow context access issues:git pushreceives emptyBOT_PA_TOKEN,peter-evans/find-commentthrows "Input required and not supplied: github-token", and the workflow fails to execute due to invalid context access in reusable workflows.Root causes:
eclipse-platform/eclipse.platform.releng.aggregatoris missinggithub-tokenparameters on multiple GitHub Actionsgithub.event.workflow_runcontext, which is not available inworkflow_calleventsChanges
Created
.github/workflows/publishVersionCheckResults.yml: Local copy of the reusable workflow with authentication and context fixesgithub-token: ${{ secrets.GITHUB_TOKEN }}toactions/github-scriptsteps requiring read accessgithub-token: ${{ secrets.githubBotPAT }}topeter-evans/find-commentand comment creation stepsgithub.event.workflow_runcontext access from job conditiontimeout-minutes: 10for reliabilityUpdated
.github/workflows/version-increments.yml:uses:from external repo to local workflowpermissions: {}declarationif: github.event.workflow_run.conclusion == 'success'condition at job level (where context is available)Example Fixes
Authentication Fix - Before (external workflow):
After (local workflow):
Context Access Fix - Before (reusable workflow):
After (calling workflow):
Security
All CodeQL security checks pass with 0 alerts. The workflow now properly validates that it only runs after successful PR check completion.
Original prompt
This pull request was created as a result of the following prompt from Copilot chat.
💡 You can make Copilot smarter by setting up custom instructions, customizing its development environment and configuring Model Context Protocol (MCP) servers. Learn more Copilot coding agent tips in the docs.