From b758b91e84eabd3c829bc9228180c50f56d8279f Mon Sep 17 00:00:00 2001
From: Ricky Whitaker <ricky.whitaker@grafana.com>
Date: Fri, 26 Jan 2024 12:17:43 -0600
Subject: [PATCH] Update pr-codeql-analysis-go.yml to use token (#81395)

Updating .github/workflows/pr-codeql-analysis-go.yml to use GH token to work in private security m
irror
---
 .github/workflows/pr-codeql-analysis-go.yml | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/.github/workflows/pr-codeql-analysis-go.yml b/.github/workflows/pr-codeql-analysis-go.yml
index e7fad07382d..4d9cc3760a6 100644
--- a/.github/workflows/pr-codeql-analysis-go.yml
+++ b/.github/workflows/pr-codeql-analysis-go.yml
@@ -16,12 +16,21 @@ jobs:
     runs-on: ubuntu-latest
 
     steps:
+    - name: "Generate token"
+      id: generate_token
+      continue-on-error: true
+      uses: tibdex/github-app-token@3beb63f4bd073e61482598c45c71c1019b59b73a
+      with:
+        app_id: ${{ secrets.GRAFANA_DELIVERY_BOT_APP_ID }}
+        private_key: ${{ secrets.GRAFANA_DELIVERY_BOT_APP_PEM }}
+
     - name: Checkout repository
       uses: actions/checkout@v4
       with:
         # We must fetch at least the immediate parents so that if this is
         # a pull request then we can checkout the head.
         fetch-depth: 2
+        token: ${{ steps.generate_token.outputs.token }}
 
     - name: Set go version
       uses: actions/setup-go@v4