From eef35bd4f7db223297000a11a408692cb3074d97 Mon Sep 17 00:00:00 2001
From: Kamil Kasperski <kamil.kasperski@sap.com>
Date: Thu, 1 Aug 2024 15:27:26 +0200
Subject: [PATCH] bug: use proper secret in a workflow (#960)

/kind bug
/area ci

It's supposed to be `${{ secrets.GITHUB_TOKEN }}`...
---
 .github/workflows/update-sec-scanner.yaml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/update-sec-scanner.yaml b/.github/workflows/update-sec-scanner.yaml
index 58508d9b1..462f7d002 100644
--- a/.github/workflows/update-sec-scanner.yaml
+++ b/.github/workflows/update-sec-scanner.yaml
@@ -4,6 +4,7 @@ on:
     - cron: '21 * * * *'
 permissions:
   contents: write
+  pull-requests: write
 jobs:
   update-sec-scanners:
     name: update sec-scanners-config.yaml
@@ -25,7 +26,7 @@ jobs:
       - shell: bash
         name: Schedule security-config update
         env:
-          GH_TOKEN: ${{ github.token }}
+          GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         run: |
           git config user.name "github-actions[bot]"
           git config user.email "41898282+github-actions[bot]@users.noreply.github.com"