Skip to content

fix: Use PAT for rebase workflow to trigger subsequent checks#1001

Merged
mPokornyETM merged 2 commits intomasterfrom
feature/tst-profile
Apr 10, 2026
Merged

fix: Use PAT for rebase workflow to trigger subsequent checks#1001
mPokornyETM merged 2 commits intomasterfrom
feature/tst-profile

Conversation

@mPokornyETM
Copy link
Copy Markdown
Contributor

@mPokornyETM mPokornyETM commented Apr 7, 2026
edited
Loading

Summary

Use PAT instead of github.token for the rebase workflow to trigger subsequent CI checks.

Problem

When the rebase workflow force-pushes PR branches, it uses github.token. GitHub does not trigger other workflows (like Jenkins Security Scan) for pushes made with this token - this is a security feature to prevent recursive triggers.

This caused PRs to get stuck because the required Jenkins Security Scan check never ran after rebasing.

Solution

  • Use secrets.GH_TOKEN (PAT) if configured
  • Fall back to github.token if no PAT is available

To complete this fix

A repository admin needs to:

  1. Create a Personal Access Token with repo and workflow scopes
  2. Add it as repository secret named GH_TOKEN

@mPokornyETM mPokornyETM requested a review from a team as a code owner April 7, 2026 12:09
@mPokornyETM mPokornyETM changed the title feat: Skip slow tests on PRs for faster CI feedback feat: Tag slow tests with @Tag(slow) and add fast-tests profile Apr 7, 2026
@github-actions github-actions Bot force-pushed the feature/tst-profile branch from 24598b3 to 2b9d3d0 Compare April 7, 2026 13:58
@github-actions github-actions Bot added the chore Maintenance label Apr 10, 2026
@mPokornyETM
fix: Use PAT for rebase workflow to trigger subsequent checks
d37cec0 
When using github.token, force-pushes don't trigger other workflows
like Jenkins Security Scan. Using a PAT (GH_TOKEN secret) fixes this.

Falls back to github.token if secret is not configured.

To complete this fix, a repository admin needs to:
1. Create a PAT with 'repo' and 'workflow' scopes
2. Add it as repository secret named GH_TOKEN
@mPokornyETM mPokornyETM force-pushed the feature/tst-profile branch from 3775d37 to d37cec0 Compare April 10, 2026 20:20
@mPokornyETM mPokornyETM changed the title feat: Tag slow tests with @Tag(slow) and add fast-tests profile fix: Use PAT for rebase workflow to trigger subsequent checks Apr 10, 2026
@github-actions github-actions Bot added the bug label Apr 10, 2026
@mPokornyETM mPokornyETM merged commit 593a2e8 into master Apr 10, 2026
21 checks passed
@mPokornyETM mPokornyETM deleted the feature/tst-profile branch April 10, 2026 20:52
@mPokornyETM mPokornyETM added the Merged without review ! This PR was marged without reviewers label Apr 10, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

bug chore Maintenance ci dependencies Dependeny updates enhancement Merged without review ! This PR was marged without reviewers tests

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mPokornyETM