Skip to content

fix(workflow): expose POEDITOR_TOKEN to locale audit step#8203

Merged
DawoudIO merged 2 commits intomasterfrom
copilot/fix-locale-audit-token-issue
Mar 6, 2026
Merged

fix(workflow): expose POEDITOR_TOKEN to locale audit step#8203
DawoudIO merged 2 commits intomasterfrom
copilot/fix-locale-audit-token-issue

Conversation

Copy link
Contributor

Copilot AI commented Mar 6, 2026
edited
Loading

The Run locale audit step lacked POEDITOR_TOKEN in its environment, causing npm run locale:audit to always fail with POEDITOR_TOKEN environment variable is required. Additionally, audit-only mode skipped the token presence check despite the audit script requiring the token to call the POEditor API.

Changes

  • Job-level env: Moved POEDITOR_TOKEN: ${{ secrets.POEDITOR_TOKEN }} from the download step to the job level, making it available to all steps including Run locale audit
  • Token check: Removed if: inputs.operation_mode != 'audit-only' guard from Check POEditor Token — the check is required for all modes since the audit calls the POEditor API
  • Cleanup: Removed now-redundant step-level env block from Download locales from POEditor
jobs:
  download:
    runs-on: ubuntu-latest
    env:
      POEDITOR_TOKEN: ${{ secrets.POEDITOR_TOKEN }}   # ← was only on the download step
Original prompt

Fix failing GitHub Actions workflow job 66047598996 (Locale Download POEditor) where npm run locale:audit fails with POEDITOR_TOKEN environment variable is required.

Context:

  • Workflow: .github/workflows/locale-poeditor-download.yml
  • Job logs show the workflow checks ${{ secrets.POEDITOR_TOKEN }} and prints configured, but later the locale audit script (locale/scripts/locale-audit.js) fails because it reads process.env.POEDITOR_TOKEN and the audit step does not export the secret to the environment.
  • Download step already sets env: POEDITOR_TOKEN: ${{ secrets.POEDITOR_TOKEN }} but the audit step does not.
  • Additionally, audit-only mode currently skips the token check but still runs the audit, which requires the token.

Required changes:

  1. Update .github/workflows/locale-poeditor-download.yml so the Run locale audit step has access to the token (either via step-level env or job-level env). Prefer a job-level env for clarity and to cover all steps, but ensure it does not break the audit-only mode.
  2. Ensure Check POEditor Token behavior aligns with audit-only mode:
    • Either run the token check for audit-only mode too, or otherwise guarantee that audit-only runs won’t fail due to missing token.
  3. Keep changes minimal and focused on fixing the failing job.

Reference run/job:

Acceptance criteria:

  • Workflow no longer fails at locale audit due to missing POEDITOR_TOKEN.
  • Scheduled and workflow_dispatch runs succeed when secret is present.
  • audit-only mode behavior is consistent (does not falsely skip needed token check).

This pull request was created from Copilot chat.

💡 You can make Copilot smarter by setting up custom instructions, customizing its development environment and configuring Model Context Protocol (MCP) servers. Learn more Copilot coding agent tips in the docs.

@DawoudIO
fix: add job-level POEDITOR_TOKEN env and update token check for audi…
ab841e9 
…t-only mode

Co-authored-by: DawoudIO <554959+DawoudIO@users.noreply.github.com>
@DawoudIO DawoudIO marked this pull request as ready for review March 6, 2026 15:38
@DawoudIO DawoudIO requested a review from a team as a code owner March 6, 2026 15:38
@DawoudIO DawoudIO requested review from DAcodedBEAT, DawoudIO, MrClever, bigtigerku, Copilot, grayeul and respencer and removed request for a team March 6, 2026 15:38
Copilot AI changed the title [WIP] Fix failing GitHub Actions workflow job for locale audit fix(workflow): expose POEDITOR_TOKEN to locale audit step Mar 6, 2026
@DawoudIO DawoudIO merged commit 3808fb1 into master Mar 6, 2026
10 checks passed
@DawoudIO DawoudIO deleted the copilot/fix-locale-audit-token-issue branch March 6, 2026 15:39
Copilot AI reviewed Mar 6, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR fixes a failing GitHub Actions workflow (locale-poeditor-download.yml) where the Run locale audit step failed because npm run locale:audit reads process.env.POEDITOR_TOKEN but the secret was not exported to that step's environment. The fix promotes the token to a job-level env variable so all steps (including Run locale audit) automatically inherit it, removes the now-redundant step-level env on the Download locales from POEditor step, and removes the audit-only bypass on the Check POEditor Token step to ensure the token is always validated (since audit-only mode also calls the POEditor API).

Changes:

  • Moved POEDITOR_TOKEN secret to job-level env, making it available to all steps including Run locale audit
  • Removed the if: inputs.operation_mode != 'audit-only' guard from the Check POEditor Token step so token validation runs in every mode
  • Removed the now-redundant step-level env block from the Download locales from POEditor step

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@respencer respencer Awaiting requested review from respencer respencer is a code owner automatically assigned from ChurchCRM/developers

@DawoudIO DawoudIO Awaiting requested review from DawoudIO DawoudIO is a code owner automatically assigned from ChurchCRM/developers

@grayeul grayeul Awaiting requested review from grayeul grayeul is a code owner automatically assigned from ChurchCRM/developers

@DAcodedBEAT DAcodedBEAT Awaiting requested review from DAcodedBEAT DAcodedBEAT is a code owner automatically assigned from ChurchCRM/developers

@MrClever MrClever Awaiting requested review from MrClever MrClever is a code owner automatically assigned from ChurchCRM/developers

@bigtigerku bigtigerku Awaiting requested review from bigtigerku bigtigerku is a code owner automatically assigned from ChurchCRM/developers

Assignees

@DawoudIO DawoudIO

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@DawoudIO