Merge pull request #13930 from MicrosoftDocs/workflows-test

dstrome · web-flow · commit 077cb31c93ef · 2026-03-10T11:59:19.000-07:00
Change github app token to v2
diff --git a/.github/workflows/Shared-AutoLabelAssign.yml b/.github/workflows/Shared-AutoLabelAssign.yml
@@ -1435,7 +1435,29 @@ jobs:
 
                                     # Get permission level of user who created the comment. Need to use .role_name instead of .permission because .permission provides only legacy values. 
                                     # .role_name provides legacy plus triage, maintain, and custom roles like write-elevated.
-                                    $UserPermission = $(Invoke-RestMethod -Method GET -Headers $GitHubHeaders -Uri $UserPermissionUrl).role_name
+                                    # Copilot isn't a real user so attempting to retrieve its permissions on the repo will fail. Set $UserPermission to read if copilot is the submitter.
+                                    If ($PrCreator -ne "copilot") {
+
+                                        Try {
+                                        
+                                            $UserPermission = $(Invoke-RestMethod -Method GET -Headers $GitHubHeaders -Uri $UserPermissionUrl).role_name
+
+                                        } Catch {
+
+                                            Write-Host "Failed to retrieve user permission for $PrCreator. Defaulting to read. Error: $_"
+
+                                            $UserPermission = "read"
+
+                                        }
+
+                                    } Else {
+
+                                        Write-Host "PR creator is copilot. Defaulting to read permissions."
+
+                                        $UserPermission = "read"
+
+                                    }
+                                    
 
                                     # Only add reviewers if the submitter can't sign off on their own PR.
                                     If (($UserPermission -eq "read") -or ($UserPermission -eq "") -or ($UserPermission -eq $Null)) {
diff --git a/.github/workflows/Shared-AutoPublishV2.yml b/.github/workflows/Shared-AutoPublishV2.yml
@@ -35,7 +35,7 @@ jobs:
 
           - name: Create App Token
             id: app-token
-            uses: actions/create-github-app-token@v1
+            uses: actions/create-github-app-token@v2
             with:
                 app-id:      ${{ secrets.ClientId }}
                 private-key: ${{ secrets.PrivateKey }}
