ci: fix permissions for GITHUB_TOKEN on dependabot workflows (#22547)

2024-11-19 14:36:22 +01:00 · 2024-11-19 14:36:22 +01:00 · f96b3b00e3
commit f96b3b00e3
parent 9e36674378
2 changed files with 3 additions and 3 deletions
--- a/.github/workflows/dependabot-update-all.yml
+++ b/.github/workflows/dependabot-update-all.yml
@ -2,6 +2,7 @@ name: Dependabot Update All Go Modules
 on: pull_request

 permissions:
+  contents: write
  pull-requests: write

 env:
@ -16,8 +17,6 @@ jobs:
        with:
          repository: ${{ github.event.pull_request.head.repo.full_name }}
          ref: ${{ github.event.pull_request.head.ref }}
-          # Secret to be added in the repo under Settings > Secrets > Dependabot
-          token: ${{ secrets.PRBOT_PAT }}
      - uses: actions/setup-go@v5
        with:
          go-version: "1.23"
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@ -7,7 +7,8 @@ on:
      - main

 permissions:
-  contents: read
+  contents: write
+  pull-requests: write

 concurrency:
  group: ci-${{ github.ref }}-tests