From cf95b631cd3e309ee3877250cfb514737b6173a8 Mon Sep 17 00:00:00 2001 From: matt korwel Date: Thu, 18 Sep 2025 20:44:38 -0700 Subject: [PATCH] use the cla user (#8806) --- .../workflows/release-patch-1-create-pr.yml | 11 ++++++- docs/releases.md | 33 +++++++++++++++++++ 2 files changed, 43 insertions(+), 1 deletion(-) diff --git a/.github/workflows/release-patch-1-create-pr.yml b/.github/workflows/release-patch-1-create-pr.yml index c6834db1f2..f3656649a3 100644 --- a/.github/workflows/release-patch-1-create-pr.yml +++ b/.github/workflows/release-patch-1-create-pr.yml @@ -51,6 +51,15 @@ jobs: - name: 'Install Dependencies' run: 'npm ci' + - name: 'Generate GitHub App Token' + id: 'generate_token' + uses: 'actions/create-github-app-token@a8d616148505b5069dccd32f177bb87d7f39123b' + with: + app-id: '${{ secrets.APP_ID }}' + private-key: '${{ secrets.PRIVATE_KEY }}' + permission-pull-requests: 'write' + permission-contents: 'write' + - name: 'Configure Git User' run: |- git config user.name "gemini-cli-robot" @@ -59,7 +68,7 @@ jobs: - name: 'Create Patch' id: 'create_patch' env: - GH_TOKEN: '${{ secrets.GITHUB_TOKEN }}' + GH_TOKEN: '${{ steps.generate_token.outputs.token }}' continue-on-error: true run: | # Capture output directly to environment variable diff --git a/docs/releases.md b/docs/releases.md index 75fa232fa1..1ca7439090 100644 --- a/docs/releases.md +++ b/docs/releases.md @@ -148,6 +148,39 @@ Review the automatically created pull request(s) to ensure the cherry-pick was s **Security Note:** The `release/*` branches are protected by branch protection rules. A pull request to one of these branches requires at least one review from a code owner before it can be merged. This ensures that no unauthorized code is released. +#### 2.5. Adding Multiple Commits to a Hotfix (Advanced) + +If you need to include multiple fixes in a single patch release, you can add additional commits to the hotfix branch after the initial patch PR has been created: + +1. **Start with the primary fix**: Use `/patch` (or `/patch both`) on the most important PR to create the initial hotfix branch and PR. + +2. **Checkout the hotfix branch locally**: + + ```bash + git fetch origin + git checkout hotfix/v0.5.1/stable/cherry-pick-abc1234 # Use the actual branch name from the PR + ``` + +3. **Cherry-pick additional commits**: + + ```bash + git cherry-pick + git cherry-pick + # Add as many commits as needed + ``` + +4. **Push the updated branch**: + + ```bash + git push origin hotfix/v0.5.1/stable/cherry-pick-abc1234 + ``` + +5. **Test and review**: The existing patch PR will automatically update with your additional commits. Test thoroughly since you're now releasing multiple changes together. + +6. **Update the PR description**: Consider updating the PR title and description to reflect that it includes multiple fixes. + +This approach allows you to group related fixes into a single patch release while maintaining full control over what gets included and how conflicts are resolved. + #### 3. Automatic Release Upon merging the pull request, the `Release: Patch (2) Trigger` workflow is automatically triggered. It will then start the `Release: Patch (3) Release` workflow, which will: