From e28a6e4e396eea9bd8c2fb328e3fe114abea641e Mon Sep 17 00:00:00 2001
From: dadaloop82 <evershelfproject@gmail.com>
Date: Sat, 23 May 2026 08:37:30 +0000
Subject: [PATCH] ci: use WORKFLOW_PAT for auto-merge to allow pushing workflow
 file changes

---
 .github/workflows/ci.yml | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 0000f0a..1861811 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -102,7 +102,9 @@ jobs:
         uses: actions/checkout@v4
         with:
           fetch-depth: 0
-          token: ${{ secrets.GITHUB_TOKEN }}
+          # WORKFLOW_PAT must be a classic PAT with repo+workflow scopes.
+          # Without it, pushes that touch .github/workflows/ will be rejected.
+          token: ${{ secrets.WORKFLOW_PAT || github.token }}
 
       - name: Configure git bot identity
         run: |
@@ -111,7 +113,7 @@ jobs:
 
       - name: Merge develop → main
         run: |
-          git remote set-url origin https://x-access-token:${{ secrets.GITHUB_TOKEN }}@github.com/${{ github.repository }}.git
+          git remote set-url origin https://x-access-token:${{ secrets.WORKFLOW_PAT || github.token }}@github.com/${{ github.repository }}.git
           LAST=$(git log --oneline -1 origin/develop)
           git checkout main
           git pull --ff-only origin main