Skip to content

fix(ci): use GitHub App token for semantic-release#22

Merged
polaz merged 1 commit intomainfrom
fix/#21-semantic-release-app-token
Jan 19, 2026
Merged

fix(ci): use GitHub App token for semantic-release#22
polaz merged 1 commit intomainfrom
fix/#21-semantic-release-app-token

Conversation

@polaz
Copy link
Copy Markdown
Member

@polaz polaz commented Jan 19, 2026

Summary

  • Use SW Release Bot app token instead of GITHUB_TOKEN for semantic-release
  • Allows pushing version commits to main despite required status checks
  • App is configured in ruleset bypass list

Changes

  • Add tibdex/github-app-token@v2 step to generate app token
  • Use app token for checkout (sets git identity)
  • Use app token as GITHUB_TOKEN for semantic-release

Requirements

Org secrets must be configured:

  • RELEASER_APP_ID - SW Release Bot app ID
  • RELEASER_APP_PRIVATE_KEY - App private key

Test plan

  • Merge PR and verify semantic-release can push to main
  • Verify CHANGELOG.md and package.json are updated
  • Verify npm package is published with correct version

@polaz
fix(ci): use GitHub App token for semantic-release to bypass branch p…
c8a6e1a 
…rotection

Replace GITHUB_TOKEN with SW Release Bot app token for semantic-release job.
This allows the release bot to push version commits and tags to main branch
despite required status checks, using the ruleset bypass configuration.

Changes:
- Add tibdex/github-app-token@v2 step to generate app token
- Use app token for checkout (git identity)
- Use app token as GITHUB_TOKEN for semantic-release

Requires org secrets: RELEASER_APP_ID, RELEASER_APP_PRIVATE_KEY
Copilot AI review requested due to automatic review settings January 19, 2026 11:34
@polaz polaz merged commit 2fd91fc into main Jan 19, 2026
15 checks passed
@codecov
Copy link
Copy Markdown

codecov bot commented Jan 19, 2026

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!

Copilot AI reviewed Jan 19, 2026
View reviewed changes
Copy link
Copy Markdown

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR updates the CI/CD workflow to use a GitHub App token instead of the default GITHUB_TOKEN for semantic-release operations. This change allows semantic-release to push version commits and tags to the main branch despite required status checks, as the app is configured in the repository's ruleset bypass list.

Changes:

  • Add GitHub App token generation step using tibdex/github-app-token@v2
  • Configure checkout action to use the app token for git credentials
  • Pass the app token to semantic-release as GITHUB_TOKEN environment variable

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@polaz polaz deleted the fix/#21-semantic-release-app-token branch January 19, 2026 14:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@polaz