Revert "CI: set persist-credentials=false for actions/checkout@v4"

Turns out our CI scripts that git push stuff do use credentials from the checkout script. Revert until we configure scripts to use a token instead. This reverts commit b57505f.
termux · Dec 15, 2024 · 3e971ba · 3e971ba
1 parent 80876d1
commit 3e971ba
Show file tree

Hide file tree

Showing 6 changed files with 0 additions and 16 deletions.
diff --git a/.github/workflows/bootstrap_archives.yml b/.github/workflows/bootstrap_archives.yml
@@ -27,8 +27,6 @@ jobs:
     steps:
       - name: Git clone
         uses: actions/checkout@v4
-        with:
-          persist-credentials: false
       - name: Create bootstrap archive
         run: ./scripts/generate-bootstraps.sh --architectures ${{ matrix.arch }}
       - name: Store artifacts
@@ -46,7 +44,6 @@ jobs:
         uses: actions/checkout@v4
         with:
           fetch-depth: 0
-          persist-credentials: false
       - name: Fetch bootstrap archives
         uses: actions/download-artifact@v4
         with:

diff --git a/.github/workflows/command_not_found.yml b/.github/workflows/command_not_found.yml
@@ -20,7 +20,6 @@ jobs:
         with:
           fetch-depth: 1
           token: ${{ secrets.TERMUXBOT2_TOKEN }}
-          persist-credentials: false
       - name: Revbump main/command-not-found
         env:
           GITHUB_TOKEN: ${{ secrets.TERMUXBOT2_TOKEN }}

diff --git a/.github/workflows/docker_image.yml b/.github/workflows/docker_image.yml
@@ -24,8 +24,6 @@ jobs:
     steps:
     - name: Clone repository
       uses: actions/checkout@v4
-      with:
-        persist-credentials: false
     - name: Build
       run: |
         cd ./scripts
@@ -46,7 +44,6 @@ jobs:
       with:
         username: grimler
         password: ${{ secrets.DOCKER_TOKEN }}
-        persist-credentials: false
     - name: Push
       if: github.ref == 'refs/heads/master' && github.event_name != 'pull_request' && github.repository == 'termux/termux-packages'
       run: |

diff --git a/.github/workflows/package_updates.yml b/.github/workflows/package_updates.yml
@@ -37,7 +37,6 @@ jobs:
         with:
           fetch-depth: 0
           token: ${{ secrets.GITHUB_TOKEN }}
-          persist-credentials: false
       - name: Gather build summary
         run: |
           BASE_COMMIT=$(jq --raw-output .pull_request.base.sha "$GITHUB_EVENT_PATH")
@@ -138,7 +137,6 @@ jobs:
         with:
           fetch-depth: 0
           token: ${{ secrets.TERMUXBOT2_TOKEN }}
-          persist-credentials: false
       - name: Free additional disk space
         run: |
           sudo apt purge -yq $(dpkg -l | grep '^ii' | awk '{ print $2 }' | grep -P '(aspnetcore|cabal-|dotnet-|ghc-|libmono|mongodb-|mysql-|php)') \

diff --git a/.github/workflows/packages.yml b/.github/workflows/packages.yml
@@ -37,7 +37,6 @@ jobs:
       uses: actions/checkout@v4
       with:
         fetch-depth: 1000
-        persist-credentials: false
     - name: Gather build summary
       id: build-info
       env:
@@ -284,8 +283,6 @@ jobs:
     steps:
     - name: Clone repository
       uses: actions/checkout@v4
-      with:
-        persist-credentials: false
     - name: Get *.deb files
       uses: actions/download-artifact@v4
       with:
@@ -353,8 +350,6 @@ jobs:
     steps:
     - name: Clone repository
       uses: actions/checkout@v4
-      with:
-        persist-credentials: false
     - name: Get *.deb files
       uses: actions/download-artifact@v4
       with:

diff --git a/.github/workflows/vagrant.yml b/.github/workflows/vagrant.yml
@@ -28,8 +28,6 @@ jobs:
     steps:
     - name: Clone repository
       uses: actions/checkout@v4
-      with:
-        persist-credentials: false
     - name: Set up Vagrant repo
       run: |
         # https://developer.hashicorp.com/vagrant/downloads#linux