use credentials

Author: jakecoffman

.github/dependabot/go.yml

@@ -16,3 +16,12 @@ job:
     # looks absolute, but this is relative to the root of the repo
     directory: /example
     branch: main
+# credentials are optional, but are used to authenticate with private repos and registries when provided
+credentials:
+  - type: git_source
+    # Most credentials take a url or host
+    host: github.com
+    # Credentials will be either username/password or token
+    username: x-access-token
+    # Dependabot CLI will inject secrets from the environment
+    password: $GITHUB_TOKEN

.github/workflows/example.yml

@@ -25,7 +25,8 @@ jobs:
 
       - name: Run Dependabot
         env:
-          LOCAL_GITHUB_ACCESS_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          # GITHUB_TOKEN shows an example of how Dependabot CLI can be used with secrets.
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         run: |
           ./dependabot update -f .github/dependabot/go.yml --timeout 20m > result.jsonl