0fc43c5e26
The new token is set at an organization level so it does not require repository administrators to rotate the token. It also has the minimal classic PAT permissions to facilitate the workflow. It has expiry but that expiry is reported via email to the engineering organization and the IT Helpdesk have permissions to regenerate the token when expiration is imminent. Signed-off-by: Jack Baldry <jack.baldry@grafana.com> Signed-off-by: Jack Baldry <jack.baldry@grafana.com> Co-authored-by: Joey Orlando <joey.orlando@grafana.com>
23 lines
603 B
YAML
23 lines
603 B
YAML
name: Run commands when issues are labeled
|
|
on:
|
|
issues:
|
|
types: [labeled]
|
|
pull_request:
|
|
types: [labeled]
|
|
jobs:
|
|
main:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: Checkout Actions
|
|
uses: actions/checkout@v2
|
|
with:
|
|
repository: "grafana/grafana-github-actions"
|
|
path: ./actions
|
|
ref: main
|
|
- name: Install Actions
|
|
run: npm install --production --prefix ./actions
|
|
- name: Run Commands
|
|
uses: ./actions/commands
|
|
with:
|
|
token: ${{secrets.ISSUE_COMMANDS_TOKEN}}
|
|
configPath: issue_and_pr_commands
|