Use github.token for dependabot (#40)

JuliaTime · Feb 10, 2025 · 610ef75 · 610ef75
1 parent 4b0f5ee
commit 610ef75
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/.github/workflows/Update.yaml b/.github/workflows/Update.yaml
@@ -17,7 +17,7 @@ jobs:
     name: Artifacts
     runs-on: ubuntu-latest
     # These permissions are needed to:
-    # - Create PRs: https://github.com/marketplace/actions/create-pull-request#workflow-permissions
+    # - Create PRs with `github.token`: https://github.com/marketplace/actions/create-pull-request#workflow-permissions
     permissions:
       contents: write
       pull-requests: write
@@ -84,7 +84,7 @@ jobs:
             Artifacts.toml
           commit-message: ${{ steps.build.outputs.commit_message }}
           branch: gh/update-tzdata
-          token: ${{ secrets.TZJDATA_UPDATE_TOKEN }}  # TODO: Fine-grained token expires
+          token: ${{ secrets.TZJDATA_UPDATE_TOKEN || github.token }}  # TODO: Fine-grained token expires
 
   # Work around having GitHub suspend the scheduled workflow if there is no commit activity
   # for the past 60 days. As this repo doesn't get much activity beyond artifact updates