Skip to content

Commit

Permalink
ci: allow Dependabot user to write in PRs
Browse files Browse the repository at this point in the history 
According to the GitHub docs, the Dependabot gets read-only permissions
on the GITHUB_TOKEN. Since we want to create a comment with the staging
Storybook link, we need to grant write permission in the CI job.

https://docs.github.com/en/code-security/dependabot/working-with-dependabot/automating-dependabot-with-github-actions#changing-github_token-permissions
  • Loading branch information
@mvidalgarcia @DSil
mvidalgarcia authored and DSil committed Mar 25, 2024
1 parent b10301c commit f146aef
Showing 1 changed file with 2 additions and 0 deletions.
2 changes: 2 additions & 0 deletions .github/workflows/storybook.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,6 +16,8 @@ env: # Set environment variables for every job and step in this workflow
jobs:
deploy:
runs-on: ubuntu-latest
permissions:
pull-requests: write # for dependabot
steps:
- name: Checkout
uses: actions/checkout@v4
Expand Down

0 comments on commit f146aef

Please sign in to comment.