From 5f096c94b7ce8edb6922a0b964df87a5ca741369 Mon Sep 17 00:00:00 2001 From: Burak Yigit Kaya Date: Fri, 23 Jan 2026 12:04:08 +0000 Subject: [PATCH 1/9] ci(release): Fix changelog-preview permissions The changelog-preview reusable workflow now requires `statuses: write` permission to function correctly with GitHub App installations that declare permissions statically. --- .github/workflows/changelog-preview.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/changelog-preview.yml b/.github/workflows/changelog-preview.yml index 269c5a89..68f08001 100644 --- a/.github/workflows/changelog-preview.yml +++ b/.github/workflows/changelog-preview.yml @@ -10,6 +10,7 @@ on: permissions: contents: write pull-requests: write + statuses: write jobs: changelog-preview: From 39b27cd103604f780234051eec6e3ae52263f940 Mon Sep 17 00:00:00 2001 From: LucasZF Date: Fri, 6 Feb 2026 15:40:01 +0000 Subject: [PATCH 2/9] try read contents --- .github/workflows/changelog-preview.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/changelog-preview.yml b/.github/workflows/changelog-preview.yml index 68f08001..0234aa68 100644 --- a/.github/workflows/changelog-preview.yml +++ b/.github/workflows/changelog-preview.yml @@ -8,7 +8,7 @@ on: - edited - labeled permissions: - contents: write + contents: read pull-requests: write statuses: write From adc574514d201b4eaa2f6c47aaafdcabe665ae89 Mon Sep 17 00:00:00 2001 From: LucasZF Date: Fri, 6 Feb 2026 15:49:05 +0000 Subject: [PATCH 3/9] Update .github/workflows/changelog-preview.yml --- .github/workflows/changelog-preview.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/changelog-preview.yml b/.github/workflows/changelog-preview.yml index 0234aa68..53e1aac9 100644 --- a/.github/workflows/changelog-preview.yml +++ b/.github/workflows/changelog-preview.yml @@ -10,7 +10,7 @@ on: permissions: contents: read pull-requests: write - statuses: write + statuses: read jobs: changelog-preview: From e065f6597259d67104d6bc3316e6163391882e18 Mon Sep 17 00:00:00 2001 From: LucasZF Date: Fri, 6 Feb 2026 15:50:41 +0000 Subject: [PATCH 4/9] Update .github/workflows/changelog-preview.yml --- .github/workflows/changelog-preview.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/changelog-preview.yml b/.github/workflows/changelog-preview.yml index 53e1aac9..d0ef2c7e 100644 --- a/.github/workflows/changelog-preview.yml +++ b/.github/workflows/changelog-preview.yml @@ -10,7 +10,7 @@ on: permissions: contents: read pull-requests: write - statuses: read + statuses: none jobs: changelog-preview: From c8fd9e60ed69f2132c235c494c512d2276e4c6df Mon Sep 17 00:00:00 2001 From: LucasZF Date: Fri, 6 Feb 2026 15:52:52 +0000 Subject: [PATCH 5/9] Update .github/workflows/changelog-preview.yml --- .github/workflows/changelog-preview.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/changelog-preview.yml b/.github/workflows/changelog-preview.yml index d0ef2c7e..0234aa68 100644 --- a/.github/workflows/changelog-preview.yml +++ b/.github/workflows/changelog-preview.yml @@ -10,7 +10,7 @@ on: permissions: contents: read pull-requests: write - statuses: none + statuses: write jobs: changelog-preview: From d0861e1a5731ffe7c420a71ab8f081ae195026ce Mon Sep 17 00:00:00 2001 From: lucas Date: Fri, 6 Feb 2026 15:54:54 +0000 Subject: [PATCH 6/9] try suggestion of permissions fix Co-authored-by: Claude --- .github/workflows/changelog-preview.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.github/workflows/changelog-preview.yml b/.github/workflows/changelog-preview.yml index 0234aa68..79a223d8 100644 --- a/.github/workflows/changelog-preview.yml +++ b/.github/workflows/changelog-preview.yml @@ -14,5 +14,9 @@ permissions: jobs: changelog-preview: + permissions: + contents: read + pull-requests: write + statuses: write uses: getsentry/craft/.github/workflows/changelog-preview.yml@v2 secrets: inherit From 3911674861c7dd08d6c8acc91c2c5fb00ce1ee48 Mon Sep 17 00:00:00 2001 From: lucas Date: Fri, 6 Feb 2026 15:56:51 +0000 Subject: [PATCH 7/9] rever t changes --- .github/workflows/changelog-preview.yml | 14 +++++--------- 1 file changed, 5 insertions(+), 9 deletions(-) diff --git a/.github/workflows/changelog-preview.yml b/.github/workflows/changelog-preview.yml index 79a223d8..802e603c 100644 --- a/.github/workflows/changelog-preview.yml +++ b/.github/workflows/changelog-preview.yml @@ -2,11 +2,11 @@ name: Changelog Preview on: pull_request_target: types: - - opened - - synchronize - - reopened - - edited - - labeled + - opened + - synchronize + - reopened + - edited + - labeled permissions: contents: read pull-requests: write @@ -14,9 +14,5 @@ permissions: jobs: changelog-preview: - permissions: - contents: read - pull-requests: write - statuses: write uses: getsentry/craft/.github/workflows/changelog-preview.yml@v2 secrets: inherit From 31f45d568ab75157579ff90493a31120a5f09d39 Mon Sep 17 00:00:00 2001 From: LucasZF Date: Fri, 6 Feb 2026 15:57:33 +0000 Subject: [PATCH 8/9] Apply suggestions from code review --- .github/workflows/changelog-preview.yml | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/changelog-preview.yml b/.github/workflows/changelog-preview.yml index 802e603c..0234aa68 100644 --- a/.github/workflows/changelog-preview.yml +++ b/.github/workflows/changelog-preview.yml @@ -2,11 +2,11 @@ name: Changelog Preview on: pull_request_target: types: - - opened - - synchronize - - reopened - - edited - - labeled + - opened + - synchronize + - reopened + - edited + - labeled permissions: contents: read pull-requests: write From 3987a5f8a1ffad5db616dd56c53cb81b3e4c8a12 Mon Sep 17 00:00:00 2001 From: LucasZF Date: Fri, 6 Feb 2026 15:57:49 +0000 Subject: [PATCH 9/9] Apply suggestions from code review --- .github/workflows/changelog-preview.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/changelog-preview.yml b/.github/workflows/changelog-preview.yml index 0234aa68..68f08001 100644 --- a/.github/workflows/changelog-preview.yml +++ b/.github/workflows/changelog-preview.yml @@ -8,7 +8,7 @@ on: - edited - labeled permissions: - contents: read + contents: write pull-requests: write statuses: write