Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Danger failing on changelog check job #2790

Closed
armcknight opened this issue Mar 13, 2023 · 8 comments
Closed

Danger failing on changelog check job #2790

armcknight opened this issue Mar 13, 2023 · 8 comments
Labels
Platform: Cocoa

Comments

@armcknight
Copy link
Member

armcknight commented Mar 13, 2023
edited
Loading

Description

Due to a 403, e.g.: https://github.com/getsentry/sentry-cocoa/actions/runs/4403587841/jobs/7712145746#step:4:58

Possibly related to danger/danger-js#1031
@philipphofmann
Copy link
Member

@armcknight, how often do you see this happening? What can we do to fix it?

@armcknight
Copy link
Member Author

Not sure really. It actually does seem like it's running, because it left a comment on my current PR and keeps editing it. (On that PR, I actually did add a changelog entry so I'm not sure why it keeps warning about that.)

Someone mentioned it could be related to trying to edit a comment it's already left, but again that's working so I'm not sure what's up.
image

The end of the linked issue mentions token permissions, maybe we need to double check whatever token we provide to it?

@philipphofmann philipphofmann moved this from Needs Discussion to Needs More Information in Mobile & Cross Platform SDK Mar 15, 2023
@philipphofmann
Copy link
Member

maybe we need to double check whatever token we provide to it?

Could you do that, please, @armcknight? Karl has access to the tokens, so you could ping him.

@philipphofmann
Copy link
Member

@armcknight, can you please reply to my question above ⬆️ ?

@github-project-automation github-project-automation bot moved this from Needs More Information to Done in Mobile & Cross Platform SDK Apr 3, 2023
@armcknight armcknight reopened this Apr 3, 2023
@github-project-automation github-project-automation bot moved this from Done to Needs Discussion in Mobile & Cross Platform SDK Apr 3, 2023
@armcknight
Copy link
Member Author

Done @philipphofmann , sorry I missed this.

@kahest
Copy link
Member

kahest commented Apr 12, 2023

For danger, we use the default GITHUB_TOKEN created for workflow runs, with the “Default access (permissive)” scope. Seems like some API usages of danger are not covered by this. The log output is pretty bad though - looks like it manages e.g. to update the changelog comment, but fails on some other thing with a 403.

We have 2 options:

  • create a bot and use a PAT with the least permissions needed (might be a lot of trial & error, also might be that it would require permissions we don’t want to give it)
  • modify the permissions of GITHUB_TOKEN in the workflow file

We discussed to go with the second option.

@kahest kahest moved this from Needs Discussion to Backlog in Mobile & Cross Platform SDK Apr 12, 2023
@github-actions
Copy link

github-actions bot commented May 4, 2023

This issue has gone three weeks without activity. In another week, I will close it.

But! If you comment or otherwise update it, I will reset the clock, and if you label it Status: Backlog or Status: In Progress, I will leave it alone ... forever!

"A weed is but an unloved flower." ― Ella Wheeler Wilcox 🥀

@cmanallen
Copy link
Member

I doubt this auth issue has persisted for a year without resolution. Feel free to re-open if this was closed incorrectly.

@github-project-automation github-project-automation bot moved this from Backlog to Done in Mobile & Cross Platform SDK Dec 13, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Platform: Cocoa
Projects
Mobile & Cross Platform SDK
Archived in project
Milestone
No milestone
Development

No branches or pull requests
5 participants
@kahest @philipphofmann @armcknight @cmanallen @hubertdeng123