You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
If this action is used as a target of a pull_request event, then external users creating PRs will trigger actions whose github token won't have the right to post comments.
The solution would be to split between a pull_request workflow that will compute the message to be posted and store it in an artifact, and a workflow_run workflow that will post the said comment WITHOUT checking out the code.
This 2nd workflow will be more sensitive in terms of what it can do, because it will have a write token.
The text was updated successfully, but these errors were encountered:
The text was updated successfully, but these errors were encountered: