From 3d5c65cfaa4422e67a1764acb1eb7b37e923266d Mon Sep 17 00:00:00 2001
From: Dan Webb <dan.webb@damacus.io>
Date: Mon, 13 Oct 2025 10:11:21 +0100
Subject: [PATCH 1/3] chore(ci): More CI fixes

Signed-off-by: Dan Webb <dan.webb@damacus.io>
---
 .github/workflows/ci.yml                   | 5 +++--
 .github/workflows/conventional-commits.yml | 4 ++--
 .github/workflows/copilot-setup-steps.yml  | 2 --
 .github/workflows/prevent-file-change.yml  | 4 ++--
 .github/workflows/release.yml              | 8 ++++----
 5 files changed, 11 insertions(+), 12 deletions(-)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 8fdf99d86..cd35242b7 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -8,14 +8,15 @@ name: ci
 
 jobs:
   lint-unit:
-    uses: sous-chefs/.github/.github/workflows/lint-unit.yml@4.1.0
+    uses: sous-chefs/.github/.github/workflows/lint-unit.yml@5.0.1
     permissions:
       actions: write
       checks: write
       pull-requests: write
       statuses: write
       issues: write
-    secrets: inherit
+    secrets:
+      token: ${{ secrets.GITHUB_TOKEN }}
 
   integration:
     needs: lint-unit
diff --git a/.github/workflows/conventional-commits.yml b/.github/workflows/conventional-commits.yml
index 0f67f62a4..cd0571597 100644
--- a/.github/workflows/conventional-commits.yml
+++ b/.github/workflows/conventional-commits.yml
@@ -7,8 +7,8 @@ name: 'Validate PR'
 
 jobs:
   conventional-commits:
-    uses: sous-chefs/.github/.github/workflows/conventional-commits.yml@5.0.0
+    uses: sous-chefs/.github/.github/workflows/conventional-commits.yml@5.0.1
     permissions:
       pull-requests: read
-    with:
+    secrets:
       token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/copilot-setup-steps.yml b/.github/workflows/copilot-setup-steps.yml
index 4a2b71be7..3fa3ae322 100644
--- a/.github/workflows/copilot-setup-steps.yml
+++ b/.github/workflows/copilot-setup-steps.yml
@@ -13,10 +13,8 @@ name: 'Copilot Setup Steps'
 jobs:
   copilot-setup-steps:
     runs-on: ubuntu-latest
-
     permissions:
       contents: read
-
     steps:
       - name: Check out code
         uses: actions/checkout@v5
diff --git a/.github/workflows/prevent-file-change.yml b/.github/workflows/prevent-file-change.yml
index 8dfcedbe2..fdd4f737e 100644
--- a/.github/workflows/prevent-file-change.yml
+++ b/.github/workflows/prevent-file-change.yml
@@ -7,8 +7,8 @@ name: 'Prevent file change'
 
 jobs:
   prevent-file-change:
-    uses: sous-chefs/.github/.github/workflows/prevent-file-change.yml@4.1.0
+    uses: sous-chefs/.github/.github/workflows/prevent-file-change.yml@5.0.1
     permissions:
       pull-requests: write
-    with:
+    secrets:
       token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index f88b71036..48e4cd5ac 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -15,8 +15,8 @@ permissions:
 
 jobs:
   release-cookbook:
-    uses: sous-chefs/.github/.github/workflows/release-cookbook.yml@4.1.0
-    with:
+    uses: sous-chefs/.github/.github/workflows/release-cookbook.yml@5.0.1
+    secrets:
       token: ${{ secrets.PORTER_GITHUB_TOKEN }}
-      supermarket_user: ${{ secrets.SUPERMARKET_USER }}
-      supermarket_key: ${{ secrets.SUPERMARKET_KEY }}
+      supermarket_user: ${{ secrets.CHEF_SUPERMARKET_USER }}
+      supermarket_key: ${{ secrets.CHEF_SUPERMARKET_KEY }}

From 512e22105552df6d043dc0f0d82b65d72ca88335 Mon Sep 17 00:00:00 2001
From: Dan Webb <dan.webb@damacus.io>
Date: Mon, 13 Oct 2025 10:42:09 +0100
Subject: [PATCH 2/3] yolo

Signed-off-by: Dan Webb <dan.webb@damacus.io>
---
 .github/workflows/ci.yml                   | 3 +--
 .github/workflows/conventional-commits.yml | 3 +--
 .github/workflows/prevent-file-change.yml  | 3 +--
 3 files changed, 3 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index cd35242b7..4ea5a608f 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -15,8 +15,7 @@ jobs:
       pull-requests: write
       statuses: write
       issues: write
-    secrets:
-      token: ${{ secrets.GITHUB_TOKEN }}
+    secrets: inherit
 
   integration:
     needs: lint-unit
diff --git a/.github/workflows/conventional-commits.yml b/.github/workflows/conventional-commits.yml
index cd0571597..e29a0ee1e 100644
--- a/.github/workflows/conventional-commits.yml
+++ b/.github/workflows/conventional-commits.yml
@@ -10,5 +10,4 @@ jobs:
     uses: sous-chefs/.github/.github/workflows/conventional-commits.yml@5.0.1
     permissions:
       pull-requests: read
-    secrets:
-      token: ${{ secrets.GITHUB_TOKEN }}
+    secrets: inherit
diff --git a/.github/workflows/prevent-file-change.yml b/.github/workflows/prevent-file-change.yml
index fdd4f737e..453ad752f 100644
--- a/.github/workflows/prevent-file-change.yml
+++ b/.github/workflows/prevent-file-change.yml
@@ -10,5 +10,4 @@ jobs:
     uses: sous-chefs/.github/.github/workflows/prevent-file-change.yml@5.0.1
     permissions:
       pull-requests: write
-    secrets:
-      token: ${{ secrets.GITHUB_TOKEN }}
+    secrets: inherit

From c75d2e9e8f7cc3f304795919c1dc5009d223eb58 Mon Sep 17 00:00:00 2001
From: Dan Webb <dan.webb@damacus.io>
Date: Mon, 13 Oct 2025 10:58:09 +0100
Subject: [PATCH 3/3] Updates

Signed-off-by: Dan Webb <dan.webb@damacus.io>
---
 .github/workflows/ci.yml                   | 2 +-
 .github/workflows/conventional-commits.yml | 2 +-
 .github/workflows/prevent-file-change.yml  | 2 +-
 .github/workflows/release.yml              | 2 +-
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 4ea5a608f..5c4679e4b 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -8,7 +8,7 @@ name: ci
 
 jobs:
   lint-unit:
-    uses: sous-chefs/.github/.github/workflows/lint-unit.yml@5.0.1
+    uses: sous-chefs/.github/.github/workflows/lint-unit.yml@5.0.2
     permissions:
       actions: write
       checks: write
diff --git a/.github/workflows/conventional-commits.yml b/.github/workflows/conventional-commits.yml
index e29a0ee1e..812f6d67c 100644
--- a/.github/workflows/conventional-commits.yml
+++ b/.github/workflows/conventional-commits.yml
@@ -7,7 +7,7 @@ name: 'Validate PR'
 
 jobs:
   conventional-commits:
-    uses: sous-chefs/.github/.github/workflows/conventional-commits.yml@5.0.1
+    uses: sous-chefs/.github/.github/workflows/conventional-commits.yml@5.0.2
     permissions:
       pull-requests: read
     secrets: inherit
diff --git a/.github/workflows/prevent-file-change.yml b/.github/workflows/prevent-file-change.yml
index 453ad752f..c2c51e2bd 100644
--- a/.github/workflows/prevent-file-change.yml
+++ b/.github/workflows/prevent-file-change.yml
@@ -7,7 +7,7 @@ name: 'Prevent file change'
 
 jobs:
   prevent-file-change:
-    uses: sous-chefs/.github/.github/workflows/prevent-file-change.yml@5.0.1
+    uses: sous-chefs/.github/.github/workflows/prevent-file-change.yml@5.0.2
     permissions:
       pull-requests: write
     secrets: inherit
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 48e4cd5ac..93605bc33 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -15,7 +15,7 @@ permissions:
 
 jobs:
   release-cookbook:
-    uses: sous-chefs/.github/.github/workflows/release-cookbook.yml@5.0.1
+    uses: sous-chefs/.github/.github/workflows/release-cookbook.yml@5.0.2
     secrets:
       token: ${{ secrets.PORTER_GITHUB_TOKEN }}
       supermarket_user: ${{ secrets.CHEF_SUPERMARKET_USER }}