Skip to content

Commit 91c8c04

Browse files
committed
move codecov from token to oidc
1 parent be8306b commit 91c8c04

2 files changed

Lines changed: 3 additions & 9 deletions

File tree

.github/workflows/release.yml

Lines changed: 1 addition & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -25,9 +25,8 @@ jobs:
2525
permissions:
2626
contents: read
2727
actions: write
28+
id-token: write
2829
uses: ./.github/workflows/test.yml
29-
secrets:
30-
CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }}
3130

3231
build:
3332
name: Build Package

.github/workflows/test.yml

Lines changed: 2 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -18,9 +18,6 @@ on:
1818
- "justfile"
1919
merge_group:
2020
workflow_call:
21-
secrets:
22-
CODECOV_TOKEN:
23-
required: true
2421
workflow_dispatch:
2522
inputs:
2623
debug:
@@ -776,11 +773,9 @@ jobs:
776773
coverage-combine:
777774
needs: [postgres, sqlite, mysql, mariadb, oracle, windows, macos]
778775
runs-on: ubuntu-latest
779-
environment:
780-
name: codecov
781-
deployment: false # Prevents creating a GitHub deployment object
782776
permissions:
783777
contents: read
778+
id-token: write
784779
steps:
785780
- name: Clear Tool cache
786781
if: ${{ github.event.inputs.clear_cache == 'true' }}
@@ -809,6 +804,6 @@ jobs:
809804
- name: Upload coverage to Codecov
810805
uses: codecov/codecov-action@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2
811806
with:
812-
token: ${{ secrets.CODECOV_TOKEN }}
807+
use_oidc: true
813808
files:
814809
./coverage.xml

0 commit comments

Comments
 (0)