ci: add token check for debugging

[SkrubbySkrubInAShrub]

Summary by CodeRabbit

• Chores
  • Enhanced release workflow verification steps to ensure reliable automation during deployment processes.

[coderabbitai]

Caution

Review failed

The pull request is closed.

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro Plus

Run ID: 03cc7bff-1ab4-43a7-a11a-535248cf5322

📥 Commits

Reviewing files that changed from the base of the PR and between 7211b31 and d6a62c3.

📒 Files selected for processing (2)

• .github/workflows/release-hotfix.yaml
• .github/workflows/release-semantic.yaml

---

📝 Walkthrough

Walkthrough

This PR adds temporary debugging validation steps to two GitHub Actions release workflows. Each step checks whether the generated GitHub App token is non-empty, then performs authenticated API requests to verify repository access and list reachable repositories before proceeding with the release logic.

Changes

App Token Verification in Release Workflows

Layer / File(s)	Summary
Hotfix workflow token verification .github/workflows/release-hotfix.yaml	Adds a "Verify app token" step (lines 68–88) that fails if the token is empty and calls GitHub APIs to confirm repository metadata access and enumerate installation repositories.
Semantic workflow token verification .github/workflows/release-semantic.yaml	Adds a matching "Verify app token" step (lines 40–60) with an empty token guard and authenticated GitHub API calls to report repository permissions and list accessible repositories.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

Possibly related PRs

• community-shaders/skyrim-community-shaders#2307: Introduced the release-hotfix.yaml workflow; this PR adds debugging validation directly within that workflow file.

Suggested reviewers

• doodlum

Poem

🐰 A token walks through the release gate,
We check it's there, not empty, great!
Two workflows now with watchful eyes,
To catch the bugs before they rise. 🔐

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

Warning

There were issues while running some tools. Please review the errors and either fix the tool's configuration or disable the tool if it's a critical failure.

🔧 actionlint (1.7.12)

.github/workflows/release-hotfix.yaml

could not read ".github/workflows/release-hotfix.yaml": open .github/workflows/release-hotfix.yaml: no such file or directory

.github/workflows/release-semantic.yaml

could not read ".github/workflows/release-semantic.yaml": open .github/workflows/release-semantic.yaml: no such file or directory

🔧 zizmor (1.25.2)

.github/workflows/release-hotfix.yaml

INFO zizmor: 🌈 zizmor v1.25.2
fatal: no audit was performed
invalid input: .github/workflows/release-hotfix.yaml

.github/workflows/release-semantic.yaml

INFO zizmor: 🌈 zizmor v1.25.2
fatal: no audit was performed
invalid input: .github/workflows/release-semantic.yaml

🔧 YAMLlint (1.38.0)

.github/workflows/release-hotfix.yaml

[Errno 2] No such file or directory: '.github/workflows/release-hotfix.yaml'

.github/workflows/release-semantic.yaml

[Errno 2] No such file or directory: '.github/workflows/release-semantic.yaml'

🔧 Checkov (3.2.529)

.github/workflows/release-semantic.yaml

2026-05-29 22:36:22,217 [MainThread ] [ERROR] Template file not found: .github/workflows/release-semantic.yaml
2026-05-29 22:36:22,222 [MainThread ] [ERROR] Template file not found: .github/workflows/release-semantic.yaml
2026-05-29 22:36:22,238 [MainThread ] [ERROR] Template file not found: .github/workflows/release-semantic.yaml
2026-05-29 22:36:22,252 [MainThread ] [ERROR] Failed to invoke function /usr/local/lib/python3.11/dist-packages/checkov/common/runners/object_runner. with .github/workflows/release-semantic.yaml
Traceback (most recent call last):
File "/usr/local/lib/python3.11/dist-packages/checkov/common/parallelizer/parallel_runner.py", line 88, in func_wrapper
result = original_func(item)
^^^^^^^^^^^^^^^^^^^
File "/usr/local/lib/python3.11/dist-packages/checkov/common/runners/object_runner.py", line 74, in
results = parallel_runner.run_function(lambda f: (f, self._parse_file(f)), files_to_load)

... [truncated 9250 characters] ...

ctory: '.github/workflows/release-semantic.yaml'
2026-05-29 22:36:22,276 [MainThread ] [ERROR] Exception traceback:
Traceback (most recent call last):
File "/usr/local/lib/python3.11/dist-packages/checkov/main.py", line 647, in run
self.scan_reports = runner_registry.run(
^^^^^^^^^^^^^^^^^^^^
File "/usr/local/lib/python3.11/dist-packages/checkov/common/runners/runner_registry.py", line 177, in run
for result in parallel_runner_results:
File "/usr/local/lib/python3.11/dist-packages/checkov/common/parallelizer/parallel_runner.py", line 118, in _run_function_multiprocess_fork
raise v.internal_exception.with_traceback(v.internal_exception.traceback)
FileNotFoundError: [Errno 2] No such file or directory: '.github/workflows/release-semantic.yaml'

.github/workflows/release-hotfix.yaml

2026-05-29 22:36:22,292 [MainThread ] [ERROR] Template file not found: .github/workflows/release-hotfix.yaml
2026-05-29 22:36:22,296 [MainThread ] [ERROR] Template file not found: .github/workflows/release-hotfix.yaml
2026-05-29 22:36:22,311 [MainThread ] [ERROR] Template file not found: .github/workflows/release-hotfix.yaml
2026-05-29 22:36:22,315 [MainThread ] [ERROR] Failed to invoke function /usr/local/lib/python3.11/dist-packages/checkov/common/runners/object_runner. with .github/workflows/release-hotfix.yaml
Traceback (most recent call last):
File "/usr/local/lib/python3.11/dist-packages/checkov/common/parallelizer/parallel_runner.py", line 88, in func_wrapper
result = original_func(item)
^^^^^^^^^^^^^^^^^^^
File "/usr/local/lib/python3.11/dist-packages/checkov/common/runners/object_runner.py", line 74, in
results = parallel_runner.run_function(lambda f: (f, self._parse_file(f)), files_to_load)

... [truncated 9216 characters] ...

process file .github/workflows/release-hotfix.yaml
2026-05-29 22:36:22,350 [MainThread ] [ERROR] Exception traceback:
Traceback (most recent call last):
File "/usr/local/lib/python3.11/dist-packages/checkov/main.py", line 647, in run
self.scan_reports = runner_registry.run(
^^^^^^^^^^^^^^^^^^^^
File "/usr/local/lib/python3.11/dist-packages/checkov/common/runners/runner_registry.py", line 177, in run
for result in parallel_runner_results:
File "/usr/local/lib/python3.11/dist-packages/checkov/common/parallelizer/parallel_runner.py", line 118, in _run_function_multiprocess_fork
raise v.internal_exception.with_traceback(v.internal_exception.traceback)
FileNotFoundError: [Errno 2] No such file or directory: '.github/workflows/release-hotfix.yaml'

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}