From c3d02daab1f2b685eae0d9cfd9e4671692762020 Mon Sep 17 00:00:00 2001 From: Kirk Swenson Date: Mon, 16 Feb 2026 00:03:00 -0800 Subject: [PATCH 1/3] CODAP-1119: use github-actions[bot] for build number commits Replace former engineer personal GitHub credentials with the built-in github-actions[bot] identity. Also update actions/checkout to v4 and replace third-party push action with plain git push. Co-Authored-By: Claude Opus 4.6 --- .github/workflows/build-num-increment.yml | 17 +++++------------ 1 file changed, 5 insertions(+), 12 deletions(-) diff --git a/.github/workflows/build-num-increment.yml b/.github/workflows/build-num-increment.yml index 9e09abe2cb..3ed6cf957a 100644 --- a/.github/workflows/build-num-increment.yml +++ b/.github/workflows/build-num-increment.yml @@ -12,20 +12,13 @@ jobs: runs-on: ubuntu-latest steps: - name: Check out source code - uses: actions/checkout@v3 - with: - ref: ${{ github.ref }} - token: ${{ secrets.GITHUB_TOKEN }} + uses: actions/checkout@v4 - name: Increment value working-directory: v3 run: ./increment_build_num.sh - - name: Commit files + - name: Commit and push run: | - git config --local user.email ${{ secrets.USER_EMAIL }} - git config --local user.name ${{ secrets.USER_NAME }} + git config --local user.email "41898282+github-actions[bot]@users.noreply.github.com" + git config --local user.name "github-actions[bot]" git commit -a -m "Increment the build number" - - name: Push changes - uses: ad-m/github-push-action@master - with: - github_token: ${{ secrets.GITHUB_TOKEN }} - branch: ${{ github.ref }} + git push From 7727f8373f83233325348f640af9f9e60e9f14b0 Mon Sep 17 00:00:00 2001 From: Kirk Swenson Date: Mon, 16 Feb 2026 00:14:33 -0800 Subject: [PATCH 2/3] chore: add explicit contents:write permission to workflow MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Address Copilot review feedback — ensure git push has write access even if the repo/org restricts default token permissions. Co-Authored-By: Claude Opus 4.6 --- .github/workflows/build-num-increment.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/build-num-increment.yml b/.github/workflows/build-num-increment.yml index 3ed6cf957a..62a951465e 100644 --- a/.github/workflows/build-num-increment.yml +++ b/.github/workflows/build-num-increment.yml @@ -10,6 +10,8 @@ jobs: test: name: Increment value test runs-on: ubuntu-latest + permissions: + contents: write steps: - name: Check out source code uses: actions/checkout@v4 From 7d73a1c8ce37e818d0ae1984f730f956d908790a Mon Sep 17 00:00:00 2001 From: Kirk Swenson Date: Wed, 25 Feb 2026 11:33:47 -0800 Subject: [PATCH 3/3] Add comment explaining github-actions[bot] email origin Co-Authored-By: Claude Opus 4.6 --- .github/workflows/build-num-increment.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/build-num-increment.yml b/.github/workflows/build-num-increment.yml index 62a951465e..880e3a7b98 100644 --- a/.github/workflows/build-num-increment.yml +++ b/.github/workflows/build-num-increment.yml @@ -19,6 +19,8 @@ jobs: working-directory: v3 run: ./increment_build_num.sh - name: Commit and push + # Use the official github-actions[bot] account (ID 41898282) for automated commits. + # https://github.com/actions/checkout/issues/13#issuecomment-724415212 run: | git config --local user.email "41898282+github-actions[bot]@users.noreply.github.com" git config --local user.name "github-actions[bot]"