ci: fix permissions for GITHUB_TOKEN on dependabot workflows

cosmos · Nov 18, 2024 · 99fdac8 · 99fdac8
1 parent 1b3aeb7
commit 99fdac8
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 3 deletions.
diff --git a/.github/workflows/dependabot-update-all.yml b/.github/workflows/dependabot-update-all.yml
@@ -2,6 +2,7 @@ name: Dependabot Update All Go Modules
 on: pull_request
 
 permissions:
+  contents: write
   pull-requests: write
 
 env:
@@ -16,8 +17,6 @@ jobs:
         with:
           repository: ${{ github.event.pull_request.head.repo.full_name }}
           ref: ${{ github.event.pull_request.head.ref }}
-          # Secret to be added in the repo under Settings > Secrets > Dependabot
-          token: ${{ secrets.PRBOT_PAT }}
       - uses: actions/setup-go@v5
         with:
           go-version: "1.23"

diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
@@ -7,7 +7,8 @@ on:
       - main
 
 permissions:
-  contents: read
+  contents: write
+  pull-requests: write
 
 concurrency:
   group: ci-${{ github.ref }}-tests