fix: resolve workflow YAML syntax and implement security safety reset

- Removed conflictive 'workflows: write' permission.
- Added 'Safety Reset for Workflow Files' step to prevent GHA from trying to self-modify configuration files during the PR sync.
- This ensures the PR will only contain technical metadata and V2 documentation, avoiding permission rejections.
This commit is contained in:
Nubenetes Bot
2026-05-21 22:04:54 +02:00
parent 33a110e5e7
commit 7d6bfd4f83

View File

@@ -25,7 +25,6 @@ on:
permissions:
contents: write
pull-requests: write
workflows: write
concurrency:
group: v2-builder-${{ github.ref }}
@@ -91,6 +90,11 @@ jobs:
python src/readme_updater.py
python src/safety_readme.py
- name: Safety Reset for Workflow Files (Security)
run: |
# Prevent security rejection by ensuring no workflow YAMLs are part of the PR
git checkout HEAD -- .github/workflows/
- name: Create Pull Request for V2 Elite Update
id: cpr
uses: peter-evans/create-pull-request@v8