fix: use SSH_PRIVATE_KEY secret for private submodule access

Use the same SSH key approach as source-vendor.yml for cloning private submodules (abc, verific). Made-with: Cursor
2026-02-28 12:09:28 -08:00 · 2026-02-28 12:09:28 -08:00 · 0b0c19b271
parent 708637f65a
commit 0b0c19b271
1 changed files with 2 additions and 7 deletions
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@ -18,13 +18,8 @@ jobs:
      - uses: actions/checkout@v4
        with:
          fetch-depth: 0
-          submodules: false
-          token: ${{ secrets.SUBMODULE_PAT }}
-
-      - name: Initialize submodules
-        run: |
-          git -c url."https://x-access-token:${{ secrets.SUBMODULE_PAT }}@github.com/".insteadOf="git@github.com:" \
-            submodule update --init --recursive
+          submodules: recursive
+          ssh-key: ${{ secrets.SSH_PRIVATE_KEY }}

      - name: Build wheel in Alpine container
        run: |