Ensure that gosec does not pick the golang vulnerabilities.

2026-06-10 23:08:56 +00:00 · 2025-12-09 00:26:25 +00:00
parent df138828b9
commit 06d102bbea
2 changed files with 31 additions and 7 deletions
@@ -13,10 +13,6 @@ on:
        required: false
        type: string
        default: "release.yml"
-    secrets:
-      pat-token:
-        description: "Personal Access Token for creating PRs with verified commits"
-        required: true

 jobs:
  autoupdate:
@@ -57,7 +53,7 @@ jobs:
        if: steps.changes.outputs.changes_detected == 'true'
        uses: peter-evans/create-pull-request@v7
        with:
-          token: ${{ secrets.pat-token }}
+          token: ${{ secrets.HOMEBREW_TAP_TOKEN }}
          commit-message: "Update go.mod and go.sum"
          title: "Update Go dependencies"
          body: |
@@ -72,4 +68,4 @@ jobs:
        if: steps.create-pr.outputs.pull-request-number
        run: gh pr merge --squash --delete-branch --admin "${{ steps.create-pr.outputs.pull-request-number }}"
        env:
-          GH_TOKEN: ${{ secrets.pat-token }}
+          GH_TOKEN: ${{ secrets.HOMEBREW_TAP_TOKEN }}