From e6ea73d50c461d74ba62d97620c63b8968a9b659 Mon Sep 17 00:00:00 2001 From: Ivan Despot <66276597+g-despot@users.noreply.github.com> Date: Mon, 6 Jul 2026 09:24:38 +0200 Subject: [PATCH 1/2] fix(ci): skip tim-kleyersburg.de in link validator (bot-blocked 403, site is live) The community PHP client author link (docs/weaviate/client-libraries/community.md) returns 200 in a browser but 403s GitHub-runner traffic via linkinator, failing PR link validation. Add it to the shared domainsToIgnore list, matching the existing convention for db-engines.com and similar bot-protected domains. --- _build_scripts/link-validator.js | 1 + 1 file changed, 1 insertion(+) diff --git a/_build_scripts/link-validator.js b/_build_scripts/link-validator.js index eed9c516..2b3c8715 100644 --- a/_build_scripts/link-validator.js +++ b/_build_scripts/link-validator.js @@ -51,6 +51,7 @@ const domainsToIgnore = [ 'https://static.scarf.sh', 'https://www.snowflake.com', 'https://stackoverflow.com/', + 'https://www.tim-kleyersburg.de/', // 403s automated requests (site loads fine in a browser); community PHP client author link 'https://towardsdatascience.com/', 'https://voyageai.com/', 'https://weaviateagents.featurebase.app', From 4998f52e4a5a3b714461742dfe78f98cef406247 Mon Sep 17 00:00:00 2001 From: Ivan Despot <66276597+g-despot@users.noreply.github.com> Date: Mon, 6 Jul 2026 09:41:23 +0200 Subject: [PATCH 2/2] fix(ci): use built-in GITHUB_TOKEN for version fetch instead of expired PAT The custom GH_API_TOKEN secret (a PAT) expired, so update-config-versions.js got 401 Unauthorized from the GitHub API and failed the whole job at the 'Update versions from GitHub' step in both PR link validation and the production Build-and-deploy workflow. Switch both to the built-in secrets.GITHUB_TOKEN, matching llms_txt_tests.yml, which already fetches the same public release listings successfully. The env var name GH_API_TOKEN is unchanged so the script needs no edit; GITHUB_TOKEN never expires and needs no rotation. --- .github/workflows/branch.yaml | 4 ++-- .github/workflows/pull_requests.yaml | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/branch.yaml b/.github/workflows/branch.yaml index 84d3b48d..418dee41 100644 --- a/.github/workflows/branch.yaml +++ b/.github/workflows/branch.yaml @@ -10,7 +10,7 @@ jobs: name: Build and Deploy runs-on: ubuntu-latest env: - GH_API_TOKEN: ${{ secrets.GH_API_TOKEN }} + GH_API_TOKEN: ${{ secrets.GITHUB_TOKEN }} SLACK_BOT: ${{ secrets.SLACK_BOT }} NETLIFY_AUTH_TOKEN: ${{ secrets.NETLIFY_AUTH_TOKEN }} GOOGLE_CONTAINER_ID: ${{ secrets.GOOGLE_CONTAINER_ID }} @@ -26,7 +26,7 @@ jobs: yarn install - name: Update versions from GitHub env: - GH_API_TOKEN: ${{ secrets.GH_API_TOKEN }} + GH_API_TOKEN: ${{ secrets.GITHUB_TOKEN }} run: | node _build_scripts/update-config-versions.js - name: Build Docusarus project diff --git a/.github/workflows/pull_requests.yaml b/.github/workflows/pull_requests.yaml index ae19053c..7548a6c5 100644 --- a/.github/workflows/pull_requests.yaml +++ b/.github/workflows/pull_requests.yaml @@ -21,7 +21,7 @@ jobs: yarn install - name: Update versions from GitHub env: - GH_API_TOKEN: ${{ secrets.GH_API_TOKEN }} + GH_API_TOKEN: ${{ secrets.GITHUB_TOKEN }} run: | node _build_scripts/update-config-versions.js - name: Build a dev version