From e3e6dc8cc77bf874a39afbd6fa7da852fde86996 Mon Sep 17 00:00:00 2001
From: Digikwal <79085106+digikwal@users.noreply.github.com>
Date: Thu, 26 Jun 2025 21:30:14 +0200
Subject: [PATCH] fix(ci): switch to fine-grained PAT

Replaces GITHUB_TOKEN with a fine-grained personal access token to ensure that semantic-release can trigger the release.published workflow.

GitHub blocks workflows triggered by the default GITHUB_TOKEN from triggering other workflows,
which prevented our Docker build from running automatically after a release.
---
 .github/workflows/semantic-release.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/semantic-release.yml b/.github/workflows/semantic-release.yml
index d503923f..11e4ab9c 100644
--- a/.github/workflows/semantic-release.yml
+++ b/.github/workflows/semantic-release.yml
@@ -36,7 +36,7 @@ jobs:
       - name: Run Semantic Release
         id: semantic_release
         env:
-          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          GITHUB_TOKEN: ${{ secrets.GH_RELEASE_PAT }}
         run: |
           RELEASE_TAG=$(npx semantic-release | tee /dev/stderr | grep -oP '(?<=next release version is )[^ ]+')
           echo "RELEASE_TAG=${RELEASE_TAG}" >> $GITHUB_ENV