semantic-release icon indicating copy to clipboard operation
semantic-release copied to clipboard
verified publisher icon go-semantic-release

Question: do we really need a Gitlab personal access token for Gitlab ci?

Open xNok opened this issue 2 years ago • 1 comments

I am currious to understand why this is a requirement for Gitlab because I used the built in gitlab ci release tooling and it doesn't need a token to create a release.

Based on their code they use the CI_JOB_TOKEN instead: https://gitlab.com/gitlab-org/release-cli

I am not familiar with the inner working of the project yet so I was wondering if this was still a requirement. The CI_JOB_TOKEN is a recent addition so I can imagine that maybe it could works as well.

xNok avatar Jan 12 '24 18:01 xNok

Hi @xNok

Looks like the docs are a little outdated: https://github.com/go-semantic-release/semantic-release/issues/141

You don't need to provide a PAT but there are some restrictions, The only one I can recall off the top of my head is that we required the GIT_STRATEGY to be clone so that we can access the commits without the API.

cliedeman avatar Jan 14 '24 19:01 cliedeman

Docs have been updated with an example of using the job token

dannylongeuay avatar May 15 '24 15:05 dannylongeuay