From 6024e55b8c16bc75406bf76de6f36a8820f5de73 Mon Sep 17 00:00:00 2001
From: Samuel K <skevetter@pm.me>
Date: Mon, 18 May 2026 14:24:06 -0500
Subject: [PATCH] fix(ci): use make_latest legacy to avoid admin permission
 requirement

The devsy-app installation has contents:write but not administration:write.
The make_latest:true parameter on the GitHub Releases API requires elevated
permissions (likely administration:write) that the app token does not have,
causing HTTP 403. Switching to make_latest:"legacy" uses the automatic
latest-release behavior that only requires contents:write.
---
 .github/workflows/promote-release.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/promote-release.yml b/.github/workflows/promote-release.yml
index b7ad31f50..ae1c59e83 100644
--- a/.github/workflows/promote-release.yml
+++ b/.github/workflows/promote-release.yml
@@ -84,7 +84,7 @@ jobs:
           body: ${{ steps.rc_notes.outputs.body }}
           draft: false
           prerelease: false
-          make_latest: true
+          make_latest: "legacy"
 
       - name: trigger full rebuild
         env: