From e2d549e20d5e38609e31f4cf74a708a426913725 Mon Sep 17 00:00:00 2001 From: Sam <109683132+kernelsam@users.noreply.github.com> Date: Wed, 27 Mar 2024 09:55:34 -0700 Subject: [PATCH] senzing-factory/build-resources#124 reuse add to project and update permissions --- .github/workflows/add-labels-standardized.yaml | 5 +++-- .github/workflows/add-to-project-garage.yaml | 18 ++++++++++-------- .../workflows/move-pr-to-done-dependabot.yaml | 3 +++ 3 files changed, 16 insertions(+), 10 deletions(-) diff --git a/.github/workflows/add-labels-standardized.yaml b/.github/workflows/add-labels-standardized.yaml index 1360a67..50687a5 100644 --- a/.github/workflows/add-labels-standardized.yaml +++ b/.github/workflows/add-labels-standardized.yaml @@ -6,10 +6,11 @@ on: - opened - reopened +permissions: + issues: write + jobs: add-issue-labels: - permissions: - issues: write secrets: ORG_MEMBERSHIP_TOKEN: ${{ secrets.ORG_MEMBERSHIP_TOKEN }} SENZING_MEMBERS: ${{ secrets.SENZING_MEMBERS }} diff --git a/.github/workflows/add-to-project-garage.yaml b/.github/workflows/add-to-project-garage.yaml index a47e453..1abad01 100644 --- a/.github/workflows/add-to-project-garage.yaml +++ b/.github/workflows/add-to-project-garage.yaml @@ -6,13 +6,15 @@ on: - opened - reopened +permissions: + repository-projects: write + jobs: add-to-project: - name: add issue to project - runs-on: ubuntu-latest - steps: - - name: assign issue to project - uses: actions/add-to-project@v0.6.1 - with: - github-token: ${{ secrets.SENZING_GITHUB_ACCESS_TOKEN }} - project-url: https://github.com/orgs/${{ vars.SENZING_GITHUB_ACCOUNT_NAME }}/projects/${{ vars.SENZING_PROJECT_GARAGE }} + secrets: + SENZING_GITHUB_PROJECT_RW_TOKEN: ${{ secrets.SENZING_GITHUB_PROJECT_RW_TOKEN }} + uses: senzing-factory/build-resources/.github/workflows/add-to-project.yaml@v1 + with: + classic: false + project-number: ${{ vars.SENZING_PROJECT_GARAGE }} + org: ${{ vars.SENZING_GITHUB_ACCOUNT_NAME }} diff --git a/.github/workflows/move-pr-to-done-dependabot.yaml b/.github/workflows/move-pr-to-done-dependabot.yaml index f6c365b..4a5db44 100644 --- a/.github/workflows/move-pr-to-done-dependabot.yaml +++ b/.github/workflows/move-pr-to-done-dependabot.yaml @@ -5,6 +5,9 @@ on: branches: [main] types: [closed] +permissions: + repository-projects: write + jobs: move-pr-to-done-dependabot: secrets: