Merge 79a832ff0dbbdeecb9ada41e36ef46a5f934284c into 3b9b8c884f6b4bb4d5be2779c26374abadae0871

docs: update README.md (#1971 )
Add a scenario where it is necessary to push a commit to a pull request.
2025-06-07 17:48:45 +08:00 · 2024-11-10 17:23:09 +01:00 · 2024-11-08 10:32:54 -05:00 · 2022-10-26 02:33:54 +07:00
1 changed files with 30 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -35,6 +35,10 @@ Please refer to the [release page](https://github.com/actions/checkout/releases/
    #
    # We recommend using a service account with the least permissions necessary. Also
    # when generating a new PAT, select the least scopes necessary.
+    # For a basic restricted reference, you can use the same permissions as the
+    # [`GITHUB_TOKEN` gives.](https://docs.github.com/en/actions/security-guides/automatic-token-authentication#permissions-for-the-github_token)
+    # This means creating a "Fine-grained personal access token" with the
+    # `content` and `metadata` permissions.
    #
    # [Learn more about creating and using encrypted secrets](https://help.github.com/en/actions/automating-your-workflow-with-github-actions/creating-and-using-encrypted-secrets)
    #
@ -143,6 +147,7 @@ Please refer to the [release page](https://github.com/actions/checkout/releases/
 - [Checkout pull request HEAD commit instead of merge commit](#Checkout-pull-request-HEAD-commit-instead-of-merge-commit)
 - [Checkout pull request on closed event](#Checkout-pull-request-on-closed-event)
 - [Push a commit using the built-in token](#Push-a-commit-using-the-built-in-token)
+- [Push a commit to a PR using the built-in token](#Push-a-commit-to-a-PR-using-the-built-in-token)

 ## Fetch only the root files

@ -288,6 +293,31 @@ jobs:
 ```
 *NOTE:* The user email is `{user.id}+{user.login}@users.noreply.github.com`. See users API: https://api.github.com/users/github-actions%5Bbot%5D

+## Push a commit to a PR using the built-in token
+
+In a pull request trigger, `ref` is required as GitHub Actions checks out in detached HEAD mode, meaning it doesn’t check out your branch by default.
+
+```yaml
+on: pull_request
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          ref: ${{ github.head_ref }}
+      - run: |
+          date > generated.txt
+          # Note: the following account information will not work on GHES
+          git config user.name "github-actions[bot]"
+          git config user.email "41898282+github-actions[bot]@users.noreply.github.com"
+          git add .
+          git commit -m "generated"
+          git push
+```
+*NOTE:* The user email is `{user.id}+{user.login}@users.noreply.github.com`. See users API: https://api.github.com/users/github-actions%5Bbot%5D
+
+
 # License

 The scripts and documentation in this project are released under the [MIT License](LICENSE)
Author	SHA1	Message	Date
Mikael Finstad	deaad4ce8a	Merge 79a832ff0dbbdeecb9ada41e36ef46a5f934284c into 3b9b8c884f6b4bb4d5be2779c26374abadae0871	2024-11-10 17:23:09 +01:00
The web walker	3b9b8c884f	docs: update README.md (#1971 ) Some checks failed CodeQL / Analyze (javascript) (push) Has been cancelled Details Licensed / Check licenses (push) Has been cancelled Details Build and Test / build (push) Has been cancelled Details Build and Test / test (macos-latest) (push) Has been cancelled Details Build and Test / test (ubuntu-latest) (push) Has been cancelled Details Build and Test / test (windows-latest) (push) Has been cancelled Details Build and Test / test-proxy (push) Has been cancelled Details Build and Test / test-bypass-proxy (push) Has been cancelled Details Build and Test / test-git-container (push) Has been cancelled Details Build and Test / test-output (push) Has been cancelled Details Add a scenario where it is necessary to push a commit to a pull request.	2024-11-08 10:32:54 -05:00
Mikael Finstad	79a832ff0d	Improve PAT documentation	2022-10-26 02:33:54 +07:00