Make license review PR comment best-effort

akurtakov · Copilot · akurtakov · commit fe1ae47718d0 · 2026-06-19T17:58:52.000+03:00
Pull requests opened from forks run with a read-only GITHUB_TOKEN, so
creating a comment fails with 'Resource not accessible by integration'.
Wrap the comment creation in a try/catch so this no longer raises an
unhandled error: the dependency list is still written to the job
summary and the run is still marked as failed. Same-repo PRs and the
/request-license-review issue_comment flow can still post the comment.

Co-authored-by: Copilot &lt;223556219+Copilot@users.noreply.github.com&gt;
diff --git a/.github/workflows/licensecheck.yml b/.github/workflows/licensecheck.yml
@@ -192,12 +192,20 @@ jobs:
           core.summary.addRaw(body).write();
           const prNumber = context.issue && context.issue.number;
           if (prNumber) {
-            await github.rest.issues.createComment({
-              owner: context.repo.owner,
-              repo: context.repo.repo,
-              issue_number: prNumber,
-              body,
-            });
+            // Posting a comment requires a token with write access. For pull
+            // requests opened from forks the GITHUB_TOKEN is read-only, so the
+            // comment can't be posted there; the '/request-license-review'
+            // issue_comment flow runs in the base repo and can comment instead.
+            try {
+              await github.rest.issues.createComment({
+                owner: context.repo.owner,
+                repo: context.repo.repo,
+                issue_number: prNumber,
+                body,
+              });
+            } catch (err) {
+              core.warning(`Could not post review comment (likely a fork pull request with a read-only token): ${err}`);
+            }
           } else {
             core.info('No pull request context available; skipping PR comment.');
           }
