From 059dc6639aed11125f29e5678abb6854eda40e56 Mon Sep 17 00:00:00 2001
From: Takashi Arai <t.arai@salesforce.com>
Date: Fri, 19 Jun 2026 17:41:04 -0700
Subject: [PATCH] @W-23096603@ [iOS] Grant statuses:write so Danger can post
 required PR commit statuses

The static-analysis and test-orchestrator jobs run Danger to post the
danger/StaticAnalysis and danger/TestOrchestrator commit statuses that the
dev branch protection requires. Their job-level permission blocks granted
contents:read and pull-requests:write but not statuses:write, so Danger's
status calls were rejected ("Danger does not have write access to the PR
to set a PR status."). The required statuses never appeared, leaving every
PR perpetually blocked from merge even when all checks completed
successfully.
---
 .github/workflows/pr.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/pr.yaml b/.github/workflows/pr.yaml
index 106e092921..a2aafdb2c2 100644
--- a/.github/workflows/pr.yaml
+++ b/.github/workflows/pr.yaml
@@ -20,6 +20,7 @@ jobs:
     permissions:
       contents: read
       pull-requests: write
+      statuses: write
     env:
       BUNDLE_GEMFILE: ${{ github.workspace }}/.github/DangerFiles/Gemfile
     steps:
@@ -77,6 +78,7 @@ jobs:
     permissions:
       contents: read
       pull-requests: write
+      statuses: write
     env:
       BUNDLE_GEMFILE: ${{ github.workspace }}/.github/DangerFiles/Gemfile
     outputs: