Triggering GitHub Actions from a Different Repository
Learn how to trigger GitHub Actions workflows in one repository from another repository. This guide provides step-by-step instructions to set up repository dispatch triggers and Personal Access Tokens.
Triggering GitHub Actions from a Different Repository
Background
At work, I’m working on a project that spans multiple GitHub repositories. I need to trigger a job in one repository from a different repository. Let’s assume we have two repositories: the-tests and the-app. Whenever I make a change to the-app (the “source”), I want to run a workflow in the-tests (the “target”).
Repository Dispatch
GitHub provides a repository_dispatch trigger to trigger a workflow. Add it to the-tests repository:
# .github/workflows/integration-tests.yaml
name: "Integration Tests"
on:
repository_dispatch:
types:
- integration-tests
jobs:
integration-tests:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Run Integration Tests
run: ./integration-tests.sh
You can add this to an existing workflow file:
# .github/workflows/main.yaml
on:
push:
branches: ["main"]
pull_request:
branches: ["main"]
repository_dispatch:
types:
- integration-tests
# ...
Triggering with curl
Use curl to trigger this workflow via the dispatches REST endpoint. Example:
curl -qs \
--fail-with-body \
-L \
-X POST \
-H "Accept: application/vnd.github+json" \
-H "Authorization: Bearer $BEARER_TOKEN" \
-H "X-GitHub-Api-Version: 2022-11-28" \
https://api.github.com/repos/$TARGET_REPO_OWNER/$TARGET_REPO/dispatches \
-d '{"event_type":"integration-tests"}'
$BEARER_TOKEN: Fine-grained Personal Access Token (PAT).$TARGET_REPO_OWNER: Owner of the target repository.$TARGET_REPO: Name of the target repository.
Personal Access Token
Generate a Fine-grained Personal Access Token:
- Click your profile picture in GitHub and select “Settings”.
- Click “Developer settings” at the bottom-left of the settings page.
- Click “Personal access tokens” / “Fine-grained tokens” on the left-hand side.
- Click “Generate new token”.
- Name it and give it a sensible description.
- Under “Repository access”, choose “Only select repositories” and select the target repository.
- Under “Repository permissions”, choose “Contents: Read and write”.
- Click “Generate token” and copy the token (starts with
github_pat_).
Triggering from the Source Repository
Create a workflow in the-app to include the curl command:
# .github/workflows/trigger-integration-tests.yaml
name: "Trigger Integration Tests"
on:
push:
branches: ["main"]
jobs:
trigger-integration-tests:
name: "Trigger Integration Tests"
runs-on: ubuntu-latest
steps:
- name: "Trigger Integration Tests"
run: |
target_repo=the-tests
curl -qs \
--fail-with-body \
-L \
-X POST \
-H "Accept: application/vnd.github+json" \
-H "Authorization: Bearer ${{ secrets.THE_TESTS_PAT }}" \
-H "X-GitHub-Api-Version: 2022-11-28" \
https://api.github.com/repos/$GITHUB_REPOSITORY_OWNER/$target_repo/dispatches \
-d '{"event_type":"integration-tests"}'
Secrets
To store the Personal Access Token as a secret:
- In
the-apprepository, click “Settings”. - Click “Secrets and variables” under “Security”.
- Click “Actions”.
- Click “New repository secret”.
- Name it
THE_TESTS_PATand paste the PAT from earlier. - Click “Add secret”.
Conclusion
Now, any push to main in the-app should trigger the “Run Integration Tests” workflow in the-tests. You can extend this so that multiple repositories trigger the integration tests.
What’s Missing?
- Triggering
the-testsfor pull requests against dependencies. - Triggering integration tests only if all actions in
the-appsucceed.
What’s Annoying?
- Multiple dependencies require the triggering workflow in each.
- Multiple pushes trigger multiple times without waiting for everything to quiet down.