我正在尝试作为工作流程的一部分,使用 gh cli 访问另一个 Github 仓库。
以下是我使用的命令:gh release view
run: |
echo "::set-output name=description::$(gh release view --repo <owner/repo>)"
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
工作流失败,报404错误。我理解这是因为该仓库是私有的,尽管两个仓库都有相同的所有者。在本地进行身份验证时,命令可以正常工作。
有没有办法在工作流中访问该仓库?
GITHUB_TOKEN仅限于触发存储库。 如果您需要访问其他存储库或其他帐户中的任何资源,则需要通过检出步骤传递具有更广泛作用域的令牌。 这可以是GitHub应用程序令牌、个人访问令牌等。
将令牌存储在Secrets/Actions中,并将其传递到checkout任务的token参数。
或者,您可以通过ssh-key参数传递ssh密钥。
- uses: actions/checkout@v2
with:
# Repository name with owner. For example, actions/checkout
# Default: ${{ github.repository }}
repository: ''
# Personal access token (PAT) used to fetch the repository. The PAT is configured
# with the local git config, which enables your scripts to run authenticated git
# commands. The post-job step removes the PAT.
#
# We recommend using a service account with the least permissions necessary. Also
# when generating a new PAT, select the least scopes necessary.
#
# [Learn more about creating and using encrypted secrets](https://help.github.com/en/actions/automating-your-workflow-with-github-actions/creating-and-using-encrypted-secrets)
#
# Default: ${{ github.token }}
token: ''
# SSH key used to fetch the repository. The SSH key is configured with the local
# git config, which enables your scripts to run authenticated git commands. The
# post-job step removes the SSH key.
#
# We recommend using a service account with the least permissions necessary.
#
# [Learn more about creating and using encrypted secrets](https://help.github.com/en/actions/automating-your-workflow-with-github-actions/creating-and-using-encrypted-secrets)
ssh-key: ''