Merge pull request #6 from splunk/rdoshi1-patch-3

Update cla.yaml
splunk · Oct 12, 2023 · 7c2dcd7 · 7c2dcd7
2 parents 6bad372 + e61b2de
commit 7c2dcd7
Show file tree

Hide file tree

Showing 2 changed files with 26 additions and 15 deletions.
diff --git a/.github/workflows/cla.yaml b/.github/workflows/cla.yaml
@@ -1,42 +1,49 @@
-name: "Agreements"
-
+name: "CLA Assistant"
 on:
   issue_comment:
-    types: [ created ]
+    types: [created]
   pull_request_target:
-    types: [ opened, closed, synchronize ]
-
+    types: [opened, closed, synchronize]
+# explicitly configure permissions, in case your GITHUB_TOKEN workflow permissions are set to read-only in repository settings
+permissions:
+  actions: write
+  contents: write
+  pull-requests: write
+  statuses: write
 jobs:
-  ContributorLicenseAgreement:
+  CLAAssistant:
     runs-on: ubuntu-latest
     steps:
       - name: "CLA Assistant"
         if: (github.event.comment.body == 'recheck' || github.event.comment.body == 'I have read the CLA Document and I hereby sign the CLA') || github.event_name == 'pull_request_target'
-        uses: contributor-assistant/github-action@v2.3.1
+        uses: contributor-assistant/github-action@v2.3.0
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-          PERSONAL_ACCESS_TOKEN: ${{ secrets.PAT_CLATOOL }}
+          # the below token should have repo scope and must be manually added by you in the repository's secret
+          # This token is required only if you have configured to store the signatures in a remote repository/organization
+          PERSONAL_ACCESS_TOKEN: ${{ secrets.PERSONAL_ACCESS_TOKEN }}
         with:
-          path-to-signatures: "signatures/version1/cla.json"
-          path-to-document: "https://github.com/splunk/cla-agreement/blob/main/CLA.md" # e.g. a CLA or a DCO document
-          branch: "main"
-          allowlist: dependabot[bot],renovate[bot]
+          path-to-signatures: 'signatures/version1/cla.json'
+          path-to-document: 'https://github.com/splunk/cla-agreement/blob/main/CLA.md' # e.g. a CLA or a DCO document
+          # branch should not be protected
+          branch: 'main'
+          allowlist: dependabot[bot]
           remote-organization-name: splunk
           remote-repository-name: cla-agreement
   CodeOfConduct:
     runs-on: ubuntu-latest
     steps:
       - name: "COC Assistant"
         if: (github.event.comment.body == 'recheck' || github.event.comment.body == 'I have read the Code of Conduct and I hereby accept the Terms') || github.event_name == 'pull_request_target'
-        uses: contributor-assistant/github-action@v2.3.1
+        uses: cla-assistant/github-action@v2.3.0
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-          PERSONAL_ACCESS_TOKEN: ${{ secrets.PAT_CLATOOL }}
+          PERSONAL_ACCESS_TOKEN: ${{ secrets.PERSONAL_ACCESS_TOKEN }}
         with:
           path-to-signatures: "signatures/version1/coc.json"
           path-to-document: "https://github.com/splunk/cla-agreement/blob/main/CODE_OF_CONDUCT.md" # e.g. a COC or a DCO document
           branch: "main"
-          allowlist: dependabot[bot],renovate[bot]
+          allowlist: dependabot[bot]
           remote-organization-name: splunk
           remote-repository-name: cla-agreement
           custom-pr-sign-comment: "I have read the Code of Conduct and I hereby accept the Terms"

diff --git a/README.md b/README.md
@@ -37,3 +37,7 @@ cd qbec
 make install  # installs lint tools etc.
 make
 ```
+
+### Sign the CLA
+
+Follow the steps here [cla-assistant](https://github.com/splunk/cla-agreement)