Revert "use github token for fork testing"

ezhang6811 · ezhang6811 · commit ba271f2cbe24 · 2025-08-13T12:34:20.000-07:00
This reverts commit 3775cea.
diff --git a/.github/workflows/post-release-version-bump.yml b/.github/workflows/post-release-version-bump.yml
@@ -14,7 +14,6 @@ permissions:
   id-token: write
   contents: write
   pull-requests: write
-  actions: write
 
 jobs:
   check-version:
@@ -59,25 +58,25 @@ jobs:
     runs-on: ubuntu-latest
     needs: check-version
     steps:
-#      - name: Configure AWS credentials for BOT secrets
-#        uses: aws-actions/configure-aws-credentials@v4
-#        with:
-#          role-to-assume: ${{ secrets.AWS_ROLE_ARN_SECRETS_MANAGER }}
-#          aws-region: ${{ env.AWS_DEFAULT_REGION }}
-#
-#      - name: Get Bot secrets
-#        uses: aws-actions/aws-secretsmanager-get-secrets@v1
-#        id: bot_secrets
-#        with:
-#          secret-ids: |
-#            BOT_TOKEN ,${{ secrets.BOT_TOKEN_SECRET_ARN }}
-#          parse-json-secrets: true
+      - name: Configure AWS credentials for BOT secrets
+        uses: aws-actions/configure-aws-credentials@v4
+        with:
+          role-to-assume: ${{ secrets.AWS_ROLE_ARN_SECRETS_MANAGER }}
+          aws-region: ${{ env.AWS_DEFAULT_REGION }}
+
+      - name: Get Bot secrets
+        uses: aws-actions/aws-secretsmanager-get-secrets@v1
+        id: bot_secrets
+        with:
+          secret-ids: |
+            BOT_TOKEN ,${{ secrets.BOT_TOKEN_SECRET_ARN }}
+          parse-json-secrets: true
 
       - name: Setup Git
         uses: actions/checkout@v2
         with:
           fetch-depth: 0
-          token: ${{ secrets.GITHUB_TOKEN }}
+          token: ${{ env.BOT_TOKEN_GITHUB_RW_PATOKEN }}
 
       - name: Configure Git
         run: |
@@ -100,15 +99,15 @@ jobs:
           DEV_VERSION="${{ github.event.inputs.version }}.dev0"
           sed -i'' -e "s/val adotVersion = \".*\"/val adotVersion = \"${DEV_VERSION}\"/" version.gradle.kts
           VERSION="${{ github.event.inputs.version }}"
-          sed -i'' -e 's/adot-autoinstrumentation-java:v2.*"/adot-autoinstrumentation-java:v'$VERSION'"/' .github/workflows/daily-scan.yml
+          sed -i'' -e 's/adot-autoinstrumentation-java:v2\.[0-9]+\.[0-9]+/adot-autoinstrumentation-java:v'$VERSION'/g' .github/workflows/daily-scan.yml
           git add version.gradle.kts
           git add .github/workflows/daily-scan.yml
           git commit -m "Prepare main for next development cycle: Update version to $DEV_VERSION"
           git push --set-upstream origin "prepare-main-for-next-dev-cycle-${VERSION}"
 
       - name: Create Pull Request to main
         env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          GITHUB_TOKEN: ${{ env.BOT_TOKEN_GITHUB_RW_PATOKEN }}
         run: |
           DEV_VERSION="${{ github.event.inputs.version }}.dev0"
           gh pr create --title "Post release $VERSION: Update version to $DEV_VERSION" \
diff --git a/.github/workflows/pre-release-prepare.yml b/.github/workflows/pre-release-prepare.yml
@@ -24,25 +24,25 @@ jobs:
   update-version-and-create-pr:
     runs-on: ubuntu-latest
     steps:
-#      - name: Configure AWS credentials for BOT secrets
-#        uses: aws-actions/configure-aws-credentials@v4
-#        with:
-#          role-to-assume: ${{ secrets.AWS_ROLE_ARN_SECRETS_MANAGER }}
-#          aws-region: ${{ env.AWS_DEFAULT_REGION }}
-#
-#      - name: Get Bot secrets
-#        uses: aws-actions/aws-secretsmanager-get-secrets@v1
-#        id: bot_secrets
-#        with:
-#          secret-ids: |
-#            BOT_TOKEN ,${{ secrets.BOT_TOKEN_SECRET_ARN }}
-#          parse-json-secrets: true
+      - name: Configure AWS credentials for BOT secrets
+        uses: aws-actions/configure-aws-credentials@v4
+        with:
+          role-to-assume: ${{ secrets.AWS_ROLE_ARN_SECRETS_MANAGER }}
+          aws-region: ${{ env.AWS_DEFAULT_REGION }}
+
+      - name: Get Bot secrets
+        uses: aws-actions/aws-secretsmanager-get-secrets@v1
+        id: bot_secrets
+        with:
+          secret-ids: |
+            BOT_TOKEN ,${{ secrets.BOT_TOKEN_SECRET_ARN }}
+          parse-json-secrets: true
 
       - name: Checkout main branch
         uses: actions/checkout@v3
         with:
           ref: 'main'
-          token: ${{ secrets.GITHUB_TOKEN }}
+          token: ${{ env.BOT_TOKEN_GITHUB_RW_PATOKEN }}
 
       - name: Setup Git
         run: |
@@ -96,7 +96,7 @@ jobs:
 
       - name: Create pull request against the release branch
         env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          GITHUB_TOKEN: ${{ env.BOT_TOKEN_GITHUB_RW_PATOKEN }}
         run: |
           gh pr create --title "Pre-release: Update version to ${VERSION}" \
                        --body "This PR updates the version to ${VERSION}.
