Skip to content

fix(ci): auto-approve release-please PRs to unblock auto-merge#99

Merged
JacobPEvans merged 2 commits intomainfrom
feature/auto-approve-release-prs
Mar 15, 2026
Merged

fix(ci): auto-approve release-please PRs to unblock auto-merge#99
JacobPEvans merged 2 commits intomainfrom
feature/auto-approve-release-prs

Conversation

@JacobPEvans
Copy link
Owner

@JacobPEvans JacobPEvans commented Mar 15, 2026
edited
Loading

PR #99 Update

Summary

Release-please PRs created by the GitHub App have auto-merge enabled but never merge because
the pull_request ruleset leaves reviewDecision empty. This fix adds a gh pr review --approve
step using GITHUB_TOKEN (github-actions[bot]) which is a different identity from the PR author
(the GitHub App), satisfying GitHub's self-approval restriction and unblocking auto-merge.

Additionally, the fix documents the org/repo setting required for GITHUB_TOKEN approval and
deduplicates the PR number lookup across auto-merge and approval steps.

Changes

  • .github/workflows/_release-please.yml — Add header comment documenting prerequisites,
    extract PR number resolution to dedicated find-pr step with output, add approval step
    using GITHUB_TOKEN

Test Plan

  • PR created with correct metadata for approval workflow
  • Both commits include standard footer notation
  • File changes align with described updates to _release-please.yml workflow

@JacobPEvans
fix(ci): auto-approve release-please PRs to unblock auto-merge
e1e240b 
Release-please PRs created by the GitHub App have auto-merge enabled but
never merge because the pull_request ruleset leaves reviewDecision empty.
Add a gh pr review --approve step using GITHUB_TOKEN (github-actions[bot])
which is a different identity from the PR author (the GitHub App), satisfying
GitHub's self-approval restriction.

(claude)
Copilot AI review requested due to automatic review settings March 15, 2026 19:10
@gemini-code-assist
Copy link

gemini-code-assist bot commented Mar 15, 2026

Note

Gemini is unable to generate a summary for this pull request due to the file types involved not being currently supported.

Copilot AI reviewed Mar 15, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Updates the reusable release-please workflow to ensure release-please PRs can satisfy required-approval branch protections and proceed with auto-merge.

Changes:

  • Adds pull-requests: write permission to the workflow job (and updates the caller example).
  • Adds a new step that approves the release-please PR using GITHUB_TOKEN via gh pr review --approve.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

You can also share your feedback on Copilot code review. Take the survey.

@JacobPEvans
fix(release-please): document prereqs and deduplicate PR number lookup
4fa6a8b 
- Add header comment documenting the org/repo setting required for
  GITHUB_TOKEN approval and the pull-requests: write caller requirement
- Extract PR number resolution to a dedicated `find-pr` step with
  a step output, eliminating the duplicated gh pr list call across
  auto-merge and approval steps

(claude)
@JacobPEvans JacobPEvans merged commit c43b79d into main Mar 15, 2026
2 checks passed
JacobPEvans added a commit to JacobPEvans/ansible-proxmox that referenced this pull request Mar 15, 2026
@JacobPEvans
fix(ci): add pull-requests: write for release-please auto-approval
a33c122 
The reusable _release-please.yml workflow now approves release PRs using
GITHUB_TOKEN, which requires pull-requests: write from the caller.

Related to JacobPEvans/.github#99

(claude)
JacobPEvans added a commit to JacobPEvans/ansible-splunk that referenced this pull request Mar 15, 2026
@JacobPEvans
fix(ci): add pull-requests: write for release-please auto-approval
cc00fd1 
The reusable _release-please.yml workflow now approves release PRs using
GITHUB_TOKEN, which requires pull-requests: write from the caller.

Related to JacobPEvans/.github#99

(claude)
JacobPEvans added a commit to JacobPEvans/nix-ai that referenced this pull request Mar 15, 2026
@JacobPEvans
fix(ci): add pull-requests: write for release-please auto-approval
1463a79 
The reusable _release-please.yml workflow now approves release PRs using
GITHUB_TOKEN, which requires pull-requests: write from the caller.

Related to JacobPEvans/.github#99

(claude)
JacobPEvans added a commit to JacobPEvans/nix-darwin that referenced this pull request Mar 15, 2026
@JacobPEvans
fix(ci): add pull-requests: write for release-please auto-approval
007998b 
The reusable _release-please.yml workflow now approves release PRs using
GITHUB_TOKEN, which requires pull-requests: write from the caller.

Related to JacobPEvans/.github#99

(claude)
JacobPEvans added a commit to JacobPEvans/ansible-proxmox-apps that referenced this pull request Mar 15, 2026
@JacobPEvans
fix(ci): add pull-requests: write for release-please auto-approval
7fb7688 
The reusable _release-please.yml workflow now approves release PRs using
GITHUB_TOKEN, which requires pull-requests: write from the caller.

Related to JacobPEvans/.github#99

(claude)
JacobPEvans added a commit to JacobPEvans/nix-darwin that referenced this pull request Mar 15, 2026
@JacobPEvans
fix(ci): add pull-requests: write for release-please auto-approval (#848
b9cb5a8 
)

The reusable _release-please.yml workflow now approves release PRs using
GITHUB_TOKEN, which requires pull-requests: write from the caller.

Related to JacobPEvans/.github#99

(claude)
JacobPEvans added a commit to JacobPEvans/terraform-proxmox that referenced this pull request Mar 15, 2026
@JacobPEvans
fix(ci): add pull-requests: write for release-please auto-approval
593e0a4 
The reusable _release-please.yml workflow now approves release PRs using
GITHUB_TOKEN, which requires pull-requests: write from the caller.

Related to JacobPEvans/.github#99

(claude)
This was referenced Mar 15, 2026
Merged
Merged
Merged
Merged
Merged
Merged
JacobPEvans added a commit to JacobPEvans/ansible-proxmox that referenced this pull request Mar 15, 2026
@JacobPEvans
fix(ci): add pull-requests: write for release-please auto-approval (#82)
80eb5bf 
The reusable _release-please.yml workflow now approves release PRs using
GITHUB_TOKEN, which requires pull-requests: write from the caller.

Related to JacobPEvans/.github#99

(claude)
JacobPEvans added a commit to JacobPEvans/nix-darwin that referenced this pull request Mar 15, 2026
@JacobPEvans
fix(ci): add pull-requests: write for release-please auto-approval (#850
b561b18 
)

The reusable _release-please.yml workflow now approves release PRs using
GITHUB_TOKEN, which requires pull-requests: write from the caller.

Related to JacobPEvans/.github#99

(claude)
JacobPEvans added a commit to JacobPEvans/ansible-proxmox-apps that referenced this pull request Mar 15, 2026
@JacobPEvans
fix(ci): add pull-requests: write for release-please auto-approval (#124
694cbe4 
)

The reusable _release-please.yml workflow now approves release PRs using
GITHUB_TOKEN, which requires pull-requests: write from the caller.

Related to JacobPEvans/.github#99

(claude)
JacobPEvans added a commit to JacobPEvans/ansible-splunk that referenced this pull request Mar 15, 2026
@JacobPEvans
fix(ci): add pull-requests: write for release-please auto-approval (#97)
c2112c1 
* fix(ci): add pull-requests: write for release-please auto-approval

The reusable _release-please.yml workflow now approves release PRs using
GITHUB_TOKEN, which requires pull-requests: write from the caller.

Related to JacobPEvans/.github#99

(claude)

* ci: trigger CodeQL scan

(claude)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@JacobPEvans