From b6f7e82b882caa1ffa9558492cc99b04f1ace3a3 Mon Sep 17 00:00:00 2001 From: Yuriy Andamasov Date: Sun, 10 May 2026 22:44:07 +0300 Subject: ci: force Node 24 + SHA-pin create-github-app-token v2.2.2 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Mirrors VyOS-Networks/vyos-docs-opus-reviewer PR #13 commit 116a4bc. Adds workflow-level env: FORCE_JAVASCRIPT_ACTIONS_TO_NODE24: "true" GitHub's documented escape hatch from the Node 20 deprecation notice; forces every JavaScript action in the workflow to run on Node 24 without per-action version churn (covers upload-artifact@v4, download-artifact@v4, etc.). Bumps actions/create-github-app-token to SHA-pinned v2.2.2 (fee1f7d63c2ff003460e3d139729b119787bc349). 🤖 Generated by [robots](https://vyos.io) --- .github/workflows/ai-validation.yml | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) (limited to '.github/workflows') diff --git a/.github/workflows/ai-validation.yml b/.github/workflows/ai-validation.yml index e99f42ce..9820f7d4 100644 --- a/.github/workflows/ai-validation.yml +++ b/.github/workflows/ai-validation.yml @@ -10,6 +10,10 @@ concurrency: env: REVIEWER_REF: reviewer-v1.0.0 + # Force JavaScript actions to run on Node 24. Some pinned action SHAs + # we rely on still ship with Node 20 ABI; this env var opts the whole + # workflow into Node 24 without per-action version churn. + FORCE_JAVASCRIPT_ACTIONS_TO_NODE24: "true" jobs: # Untrusted prepare. NO secrets referenced — even a presence check like @@ -129,7 +133,7 @@ jobs: - name: Generate GitHub App token if: steps.secrets-check.outputs.skip != 'true' id: app - uses: actions/create-github-app-token@v2 + uses: actions/create-github-app-token@fee1f7d63c2ff003460e3d139729b119787bc349 # v2.2.2 with: app-id: ${{ secrets.VYOS_APP_ID }} private-key: ${{ secrets.VYOS_APP_PRIVATE_KEY }} -- cgit v1.2.3