fix: Improve token validation to detect malformed tokens

vaind · vaind · commit a3b716ff33e2 · 2025-10-09T13:08:24.000+02:00
diff --git a/updater/action.yml b/updater/action.yml
@@ -122,11 +122,23 @@ runs:
       env:
         GH_TOKEN: ${{ inputs.api-token }}
       run: |
-        if ! gh api repos/${{ github.repository }} --silent; then
+        if [ -z "$GH_TOKEN" ]; then
+          echo "::error::GitHub token is empty. Please verify the token is passed correctly."
+          exit 1
+        fi
+
+        if echo "$GH_TOKEN" | grep -q '[[:space:]]'; then
+          echo "::error::GitHub token contains whitespace characters (newlines, spaces, etc). This suggests the token secret may be malformed."
+          exit 1
+        fi
+
+        if ! gh api repos/${{ github.repository }} --silent 2>&1; then
           echo "::error::GitHub token validation failed. Please verify:"
-          echo "  1. Token has not expired"
-          echo "  2. Token has an expiration date set"
-          echo "  3. Token has 'repo' and 'workflow' scopes"
+          echo "  1. Token is not empty or malformed"
+          echo "  2. Token has not expired"
+          echo "  3. Token has an expiration date set"
+          echo "  4. Token has 'repo' and 'workflow' scopes"
+          echo "  5. Token syntax is correct: "'${{ secrets.TOKEN_NAME }}'"
           exit 1
         fi
         echo "✓ GitHub token is valid and has access to this repository"
