workflow-application-token-action
workflow-application-token-action copied to clipboard
peter-murray
GitHub Action that will get a scoped short lived token for Actions workflows using a GitHub Application.
no_proxy env var is used to avoid proxy for a list of urls, however the proxy must be used if the var is not defined.
Within the Enterprise that I work, we follow a process for approving marketplace GitHub actions. The review process includes scanning the source code (using GitHub Advanced Security with the security-extended...
We're seeing intermittent 401 status code responses when tryin to obtain a token: ``` Run peter-murray/workflow-application-token-action@8e1ba3bf1619726336414f1014e37f17fbadf1db with: application_id: *** application_private_key: *** permissions: contents:read Error: Error: Failed to connect as application;...
This is my new favourite github action, thank you for creating this! Currently, the action defaults to a 60 second timeout, however, I can see the `githubApplication.create` method has already...
I've used this action in several workflows in an organization account to generate tokens from my private apps to access any repos owned by the account. I want to move...
Trying to generate the GH app token in one job, and using it in another via a output variable, GH will skip assignment due to it being registered as a...
Bumps [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken) from 8.5.1 to 9.0.0. Changelog Sourced from jsonwebtoken's changelog. 9.0.0 - 2022-12-21 Breaking changes: See Migration from v8 to v9 Breaking changes Removed support for Node versions 11...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Would be nice if there was someway of logging the `x-github-request-id` header. It would be helpful to have this in cases where the attempt to get a token from `app/installations//access_tokens`...
Bumps [@octokit/request-error](https://github.com/octokit/request-error.js) from 5.1.0 to 5.1.1. Release notes Sourced from @octokit/request-error's releases. v5.1.1 5.1.1 (2025-02-14) Bug Fixes ReDos regex vulnerability, reported by @dayshift (12a14f0) Commits b51ed27 test: ReDos regex vulnerability,...
Metadata
Owner
Metadata
GitHub Action that will get a scoped short lived token for Actions workflows using a GitHub Application.