elevate GITHUB_TOKEN to packages feed credential #1603
Merged
+534
−6
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
jakecoffman
reviewed
Jan 23, 2026
Contributor
There was a problem hiding this comment.
Pull request overview
This PR implements automatic authentication for GitHub Packages by elevating the GITHUB_TOKEN environment variable to a package feed credential when specific conditions are met: the automatic_github_packages_auth experiment is enabled, GITHUB_TOKEN is available, the package manager supports GitHub Packages, and no duplicate credential exists.
Changes:
- Added automatic GitHub Packages credential generation for NuGet when the experiment flag is enabled
- Extended the
JobDetailstype with asourcefield containing repository information - Added comprehensive test coverage for the new credential generation logic
Reviewed changes
Copilot reviewed 4 out of 6 changed files in this pull request and generated 5 comments.
| File | Description |
|---|---|
| src/main.ts | Implements getPackagesCredential() and getNuGetPackagesCredential() functions to create GitHub Packages credentials, and integrates them into the main credential workflow |
| src/api-client.ts | Adds source field to JobDetails type to capture repository information needed for constructing package feed URLs |
| tests/main.test.ts | Adds comprehensive test suite for getPackagesCredential() covering various scenarios including experiment flags, token availability, and duplicate detection |
| .gitattributes | Adds binary handling for .exe files (unrelated to main PR purpose) |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
brettfo
force-pushed
the
dev/brettfo/github-packages
branch
2 times, most recently
from
4222e9e to
da6cfec
Compare
brettfo
force-pushed
the
dev/brettfo/github-packages
branch
4 times, most recently
from
34d818e to
fd10732
Compare
brettfo
force-pushed
the
dev/brettfo/github-packages
branch
from
fd10732 to
5462515
Compare
brettfo
force-pushed
the
dev/brettfo/github-packages
branch
from
5462515 to
c69d6a8
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
When a dependabot job is run, the auto-generated environment variable
GITHUB_TOKENalready has thepackges: readpermissions.This PR uses that value and elevates it to a GitHub package feed credential if:
automatic_github_packages_authis enabledGITHUB_TOKENcan be resolved