Commit 7d4bb46
Scope gh-aw workflow secrets to GITHUB_TOKEN (#1475)
Add explicit github-token entries under tools.github and safe-outputs in
.github/workflows/java-interop-reviewer.md so the compiled lock file no
longer references the gh-aw fallback secret names GH_AW_GITHUB_TOKEN and
GH_AW_GITHUB_MCP_SERVER_TOKEN.
These names appear in the lock file purely as fallback chain entries that
are never set in this repo. A secret-audit report flags by name reference
in the YAML, so suppressing them satisfies the audit with no behavior change.
Before/after of the 'Secrets used:' header in the lock file:
Before: COPILOT_GITHUB_TOKEN, GH_AW_GITHUB_MCP_SERVER_TOKEN,
GH_AW_GITHUB_TOKEN, GITHUB_TOKEN
After: COPILOT_GITHUB_TOKEN, GITHUB_TOKEN
Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>1 parent f63eab9 commit 7d4bb46
2 files changed
Lines changed: 16 additions & 18 deletions
File tree
- external/Java.Interop/.github/workflows
Lines changed: 14 additions & 18 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.
Lines changed: 2 additions & 0 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
22 | 22 | | |
23 | 23 | | |
24 | 24 | | |
| 25 | + | |
25 | 26 | | |
26 | 27 | | |
27 | 28 | | |
28 | 29 | | |
29 | 30 | | |
| 31 | + | |
30 | 32 | | |
31 | 33 | | |
32 | 34 | | |
| |||
0 commit comments