General: Clean up release-prepare step name and use client-id for App auth by d4rken · Pull Request #569 · d4rken-org/capod

d4rken · 2026-05-01T07:07:44Z

What changed

Two small follow-ups from the App-token rollout:

Renamed the misleading "Re-validate after approval wait" step → "Verify state still matches plan from Job 1". The approval gate this referred to was removed in General: Restore two-step release approval flow #565, but the step name still implied one. Step body unchanged.
Switched app-id → client-id on actions/create-github-app-token. app-id is deprecated upstream (warning printed on every run); client-id is the supported input now.

The client-id swap requires a new org secret. Steps:

Open https://github.com/organizations/d4rken-org/settings/apps/d4rken-org-releaser (or whatever your App's name is)
Copy the Client ID value (it's in the "About" section near the App ID; format is Iv1.<hex> or similar)
Add an org Actions secret RELEASE_APP_CLIENT_ID with that value, scoped the same way as RELEASE_APP_ID (selected repos: capod, or all)
Then merge this PR
After successful first run, the old RELEASE_APP_ID secret can be deleted

client-id and app-id identify the same App but in different formats. The action accepts either; only client-id is non-deprecated.
Renamed the adjacent "Re-check tag collision (state may have moved during approval)" step to drop the obsolete approval-wait reference too.

chore(ci): Rename stale step name and use client-id for App auth

78f99c7

d4rken merged commit e1c0a70 into main May 1, 2026
11 checks passed

d4rken deleted the chore/release-prepare-cleanup branch May 1, 2026 07:15