Skip to content

build(deps): bump praetorian-inc/public-workflows/.github/workflows/gemini-code.yml from 2.11.3 to 2.12.1 #329

build(deps): bump praetorian-inc/public-workflows/.github/workflows/gemini-code.yml from 2.11.3 to 2.12.1

build(deps): bump praetorian-inc/public-workflows/.github/workflows/gemini-code.yml from 2.11.3 to 2.12.1 #329

name: External Contribution Notify
on:
issues:
types: [opened, assigned, closed]
pull_request_target:
types: [opened, assigned, closed]
# Permissions are declared explicitly at the caller. Reusable workflows
# cannot elevate GITHUB_TOKEN beyond what the caller grants, so if this
# block is omitted the notify job falls back to org/repo default token
# permissions — which may be read-only, causing Linear/GitHub comment
# writes to fail with "Resource not accessible by integration".
concurrency:
group: external-contribution-${{ github.ref }}
cancel-in-progress: true
permissions:
contents: read
issues: write
pull-requests: write
jobs:
notify:
uses: praetorian-inc/public-workflows/.github/workflows/external-contrib-notify.yml@0c602372f3d0d038912dd08e159ecc83954a4995 # v2.9.3
permissions:
contents: read
issues: write
pull-requests: write
secrets:
EXTERNAL_CONTRIB_APP_ID: ${{ secrets.EXTERNAL_CONTRIB_APP_ID }}
EXTERNAL_CONTRIB_APP_PRIVATE_KEY: ${{ secrets.EXTERNAL_CONTRIB_APP_PRIVATE_KEY }}
LINEAR_API_KEY: ${{ secrets.LINEAR_API_KEY }}
SLACK_BOT_TOKEN: ${{ secrets.SLACK_BOT_TOKEN }}
LINEAR_TEAM_ID: ${{ secrets.LINEAR_TEAM_ID }}
SLACK_CHANNEL_ID: ${{ secrets.SLACK_CHANNEL_ID }}
LINEAR_ASSIGNEE_ID: ${{ secrets.LINEAR_ASSIGNEE_ID }}
LINEAR_PARENT_ISSUE_ID: ${{ secrets.LINEAR_PARENT_ISSUE_ID }}
LINEAR_PROJECT_ID: ${{ secrets.LINEAR_PROJECT_ID }}