From a8962e3af8cf1656dd45224d6234bbbb13726a58 Mon Sep 17 00:00:00 2001 From: Steve Hipwell Date: Fri, 5 Dec 2025 10:53:39 +0000 Subject: [PATCH] chore: PR for moving secrets Signed-off-by: Steve Hipwell --- .github/workflows/hack-move-secrets.yaml | 37 ++++++++++++++++++++++++ 1 file changed, 37 insertions(+) create mode 100644 .github/workflows/hack-move-secrets.yaml diff --git a/.github/workflows/hack-move-secrets.yaml b/.github/workflows/hack-move-secrets.yaml new file mode 100644 index 0000000000..8d98d2ab60 --- /dev/null +++ b/.github/workflows/hack-move-secrets.yaml @@ -0,0 +1,37 @@ +name: Hack - Move Secrets + +on: + pull_request: + branches: + - main + +permissions: read-all + +jobs: + hack: + name: Hack + runs-on: ubuntu-latest + permissions: + contents: read + environment: + name: hack + defaults: + run: + shell: bash + steps: + - name: Hack + env: + GITHUB_TOKEN: ${{ secrets.API_TOKEN }} + GPG_PRIVATE_KEY: ${{ secrets.GPG_PRIVATE_KEY }} + PASSPHRASE: ${{ secrets.PASSPHRASE }} + DOTCOM_TEST_USER_TOKEN: ${{ secrets.DOTCOM_TEST_USER_TOKEN }} + DOTCOM_TEST_COLLABORATOR_TOKEN: ${{ secrets.DOTCOM_TEST_COLLABORATOR_TOKEN }} + GHES_TEST_USER_TOKEN: ${{ secrets.GHES_TEST_USER_TOKEN }} + run: | + set -eou pipefail + + # gh secret set --repo "${GITHUB_REPOSITORY}" --env release --app actions "GPG_PRIVATE_KEY" --body "${GPG_PRIVATE_KEY}" + # gh secret set --repo "${GITHUB_REPOSITORY}" --env release --app actions "PASSPHRASE" --body "${PASSPHRASE}" + gh secret set --repo "${GITHUB_REPOSITORY}" --env acctest-dotcom --app actions "DOTCOM_TEST_USER_TOKEN" --body "${DOTCOM_TEST_USER_TOKEN}" + gh secret set --repo "${GITHUB_REPOSITORY}" --env acctest-dotcom --app actions "DOTCOM_TEST_COLLABORATOR_TOKEN" --body "${DOTCOM_TEST_COLLABORATOR_TOKEN}" + gh secret set --repo "${GITHUB_REPOSITORY}" --env acctest-ghes --app actions "GHES_TEST_USER_TOKEN" --body "${GHES_TEST_USER_TOKEN}"