Hi, I added the Pulumi GitHub App to my organisation and also provided access to the

.git

folder to Pulumi in GitHub Actions. Still I do not get a comment by the GitHub App. What could be the problem? I have a setup that does reproducible builds in containers, so there is no implicit access to the environment variables in github actions. Which ones do I have to forward?

The Github app has to be assigned to each repo or the entire org. It also has to be able to detect when a pulumi up/preview is ran as part of an action that is ran on a PR

It’s assigned to the org

How is the workflow calling pulumi preview?

It’s calling

pulumi preview --stack foo

within a container.

I am thinking the plugin isn't going to be able to detect that because it is all happening insisde a container

It’s setup using a system for reproducible builds

Do you have PULUMI_ACCESS_TOKEN configured as an environment variable? It uses the Pulumi service to get the update information.

Yes, that works fine, I get the updates in the saas

I think getting those Github variables in the environment is necessary since that’s how things are mapped between Pulumi and SaaS. I agree this should be documented better. Can I suggest you opening an issue here: https://github.com/pulumi/service-requests (If you get it working.) If you don’t get it working open an issue about github app support for a container-based approach as you are using here: https://github.com/pulumi/pulumi/issues

I had opened an issue some time ago, but the discussion back then was around pulumi needing access to the

.git

folder (which I also didn’t have): https://github.com/pulumi/pulumi/issues/9195