From e9208fa0a81c28a385addee76324a22abf6c8cf3 Mon Sep 17 00:00:00 2001
From: Sam Rose <samuel@supabase.io>
Date: Tue, 10 Jun 2025 14:20:45 -0400
Subject: [PATCH] feat: update nix build ci to checkout fork if workflow
 approved

---
 .github/workflows/nix-build.yml | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/nix-build.yml b/.github/workflows/nix-build.yml
index c1811fd00..09df908cb 100644
--- a/.github/workflows/nix-build.yml
+++ b/.github/workflows/nix-build.yml
@@ -31,9 +31,11 @@ jobs:
       - name: Check out code
         uses: actions/checkout@v4
         with:
-          ref: ${{ github.event.pull_request.head.ref || github.ref }}
+          repository: ${{ github.event.pull_request.head.repo.full_name || github.repository }}
+          ref: ${{ github.event.pull_request.head.sha || github.sha }}
           fetch-depth: 0
           fetch-tags: true
+          token: ${{ secrets.GITHUB_TOKEN }}
       - name: aws-creds
         uses: aws-actions/configure-aws-credentials@v4
         with:
@@ -80,4 +82,3 @@ jobs:
           AWS_SESSION_TOKEN: ${{ env.AWS_SESSION_TOKEN }}
 
     name: build psql bundle on ${{ matrix.arch }}
-