Statement implies that GITHUB_TOKEN cannot be used to install private packages #35922
Comments
|
Thanks for opening this issue. A GitHub docs team member should be by to give feedback soon. In the meantime, please check out the contributing guidelines. |
github-actions
bot
added
the
triage
nguyenalex836
added
content
|
@jlawrence Thank you for raising this issue! I'll get this triaged for review ✨ Our team will provide feedback regarding the best next steps for this issue - thanks for your patience! 💛 |
subatoi
added
the
needs SME
|
Thanks for opening an issue! We've triaged this issue for technical review by a subject matter expert 👀 |
This comment was marked as spam.
This comment was marked as spam.
|
@jlawrence Thank you so much for your patience while our SME team reviewed! They wanted to relay the following:
Would you be willing to submit a PR to update the docs to align with guidance above? 💛 |
nguyenalex836
added
SME reviewed
|
@nguyenalex836 Thanks for the guidance. I have submitted a PR following the guidance: #36017 |
For clarity and correctness, I suggest the following change to this line:
Remove the phrase "(which GITHUB_TOKEN can't access)", and add the following sentence as a new bullet point:
"If you grant a repository read access to a private package, then that repository's workflows can use GITHUB_TOKEN to install that package (https://docs.github.com/en/packages/learn-github-packages/configuring-a-packages-access-control-and-visibility#ensuring-workflow-access-to-your-package)"
The text was updated successfully, but these errors were encountered: