Use a public PAT.

1 files changed, 12 insertions, 17 deletions

diff --git a/.github/workflows/danger.yml b/.github/workflows/danger.yml
index fcc506f..f6a2e5f 100644
--- a/.github/workflows/danger.yml
+++ b/.github/workflows/danger.yml
@@ -1,26 +1,21 @@
-name: CI
-on:
-  pull_request:
-    branches:
-      - master
-
+---
+name: danger
+on: [pull_request]
 jobs:
   danger:
     runs-on: ubuntu-latest
-    if: ${{ github.event_name == 'pull_request' }}
     steps:
     - uses: actions/checkout@v2
       with:
         fetch-depth: 0
-    - uses: ruby/setup-ruby@v1
+    - name: Set up Ruby
+      uses: ruby/setup-ruby@v1
       with:
-        ruby-version: 2.7
+        ruby-version: 2.6
         bundler-cache: true
-    - uses: MeilCli/danger-action@v5.5.0
-      with:
-        danger_file: Dangerfile
-        danger_id: danger-pr
-        install_path: vendor/bundle
-        plugins_file: Gemfile
-      env:
-        DANGER_GITHUB_API_TOKEN: ${{ secrets.GITHUB_TOKEN }}
\ No newline at end of file
+    - name: Run Danger
+      run: |
+        bundle install
+        # the personal token is public, this is ok, base64 encode to avoid tripping Github
+        TOKEN=$(echo -n NWY1ZmM5MzEyMzNlYWY4OTZiOGU3MmI3MWQ3Mzk0MzgxMWE4OGVmYwo= | base64 --decode)
+        DANGER_GITHUB_API_TOKEN=$TOKEN bundle exec danger --verbose
\ No newline at end of file