chore: update GitHub Actions workflow for AUTHORS file

- Added an explicit permissions block at the workflow level to define access for contents and pull-requests. - Explicitly set the GITHUB_TOKEN in the checkout and create-pull-request steps for improved security and clarity. - These changes enhance the maintainability and security of the workflow for updating the AUTHORS file.
tphakala · Jan 14, 2025 · cd3563a · cd3563a
1 parent c6e2806
commit cd3563a
Showing 1 changed file with 7 additions and 3 deletions.
diff --git a/.github/workflows/update-authors.yml b/.github/workflows/update-authors.yml
@@ -8,15 +8,18 @@ on:
     - cron: '0 0 1 * *'  # Monthly
   workflow_dispatch:  # Manual trigger
 
+permissions:  # Add explicit permissions block at workflow level
+  contents: write
+  pull-requests: write
+
 jobs:
   update-authors:
     runs-on: ubuntu-latest
-    permissions:
-      contents: write
-      pull-requests: write
 
     steps:
       - uses: actions/checkout@v4
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}  # Explicitly set the token
 
       - name: Update AUTHORS file
         env:
@@ -51,6 +54,7 @@ jobs:
       - name: Create Pull Request
         uses: peter-evans/create-pull-request@v5
         with:
+          token: ${{ secrets.GITHUB_TOKEN }}  # Explicitly set the token
           commit-message: 'docs: update AUTHORS file with current contributors'
           title: 'Update AUTHORS file'
           body: |