From b6956b0652f585e8579ce441e85f335b90efa206 Mon Sep 17 00:00:00 2001
From: Steve Loeppky <stvn@loeppky.com>
Date: Fri, 27 Mar 2026 09:35:59 -0700
Subject: [PATCH] fix(ci): use PAT when filing scenario reports so project
 workflows run

GitHub suppresses workflows triggered by the default GITHUB_TOKEN, so
issues opened via create-or-update-issue did not fire listeners such as
add-issues-and-prs-to-fs-project-board. Use FILOZZY_RELEASE_PLEASE_PAT_FILOZONE
so issue-open events behave like normal user/bot activity.

Callers already use secrets: inherit; ensure the secret is available on this repo.

Made-with: Cursor
---
 .github/workflows/ci_run.yml | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/ci_run.yml b/.github/workflows/ci_run.yml
index 95da5c7..9bc4d6a 100644
--- a/.github/workflows/ci_run.yml
+++ b/.github/workflows/ci_run.yml
@@ -498,7 +498,11 @@ jobs:
       if: always() && steps.should_file.outputs.file == 'true' && inputs.enable_reporting
       uses: ipdxco/create-or-update-issue@v1
       with:
-        GITHUB_TOKEN: ${{ github.token }}
+        # We're not using `github.token` here because it won't trigger other workflows like `add-issues-to-project`.
+        # Instead, we use a PAT to trigger other workflows.
+        # This PAT has permissions to open/update issues, which is why it was used.
+        # Alternatively, we could create a more narrowly scoped PAT, but this would be another PAT to setup/manage.
+        GITHUB_TOKEN: ${{ secrets.FILOZZY_RELEASE_PLEASE_PAT_FILOZONE }}
         title: ${{ inputs.issue_title }}
         body: |
           The **${{ inputs.name }}** scenarios run **${{ steps.should_file.outputs.passed == 'true' && 'passed ✅' || 'failed ❌' }}**.