Scheduled workflow can't access secrets #25955
-
I recently added an Here is an example of the failure: SalishSeaCast/NEMO-CmdNEMO command processor, a command line tool for doing various operations associated with the running NEMO (and other) ocean models. This an extensible tool built on the OpenStack cliff (Command Li... This looks to me like the scheduled workflow is being blocked from accessing secrets, but I can’t find anything in the docs that tells me that should be the case. I’m seeing this in several repos, some of which use organization secrets, others that use repo secrets. Is this a known issue that I am failing to find in my searching, or am I doing something wrong? |
Beta Was this translation helpful? Give feedback.
Replies: 3 comments
-
@douglatornell Scheduled workflows do receive secrets. Looking at your example, you can also see the masked secrets (the The problem is with the action you’re calling, looking at the code it tries to read pioug/le-slack-message/blob/087c7c6d7af33952a5b9bb49a72ed90489277cd2/index.js#L20
|
Beta Was this translation helpful? Give feedback.
-
Thanks @cschleiden ! I had looked at the action code but didn’t connect the dots about it trying to read a non-existent |
Beta Was this translation helpful? Give feedback.
-
For anyone who find this thread in the future: I couldn’t find an obvious good way to enable pioug/le-slack-message@v1.0.0 to work for |
Beta Was this translation helpful? Give feedback.
@douglatornell Scheduled workflows do receive secrets. Looking at your example, you can also see the masked secrets (the
***
), so some value was passed to the action.The problem is with the action you’re calling, looking at the code it tries to read
github.comhead_commit
from the JSON payload. That doesn’t exist for scheduled workflows and leads to this error:pioug/le-slack-message/blob/087c7c6d7af33952a5b9bb49a72ed90489277cd2/index.js#L20