Use CI_JOB_TOKEN to create releases (!59) · Merge requests · GitLab.org / Ops Sub-Department / docker-machine

Pedro Pombeiro (OOO from July 16th till Aug 7th) requested to merge pedropombeiro/28055/use-ci-job-token-for-releases into main Jul 12, 2021

What does this MR do?

This MR changes the .gitlab/ci/scripts/gitlab_release.sh script to use the ephemeral CI_JOB_TOKEN token instead of the bot's token (in the DEPLOY_TOKEN environment variable).

Why was this MR needed?

To restrict permissions associated with the token. See https://gitlab.slack.com/archives/CBQ76ND6W/p1625847069436100

What's the best way to test this MR?

N/A

What are the relevant issue numbers?

gitlab-org/gitlab-runner#28055 (closed)

Edited Jul 12, 2021 by Pedro Pombeiro (OOO from July 16th till Aug 7th)

Use CI_JOB_TOKEN to create releases

What does this MR do?

Why was this MR needed?

What's the best way to test this MR?

What are the relevant issue numbers?

Merge request reports