build(release): 2.1.2 [skip ci]

## [2.1.2](https://github.com/actions/create-github-app-token/compare/v2.1.1...v2.1.2) (2025-09-12) ### Bug Fixes * **deps:** bump @octokit/request from 9.2.3 to 10.0.2 ([#256](https://github.com/actions/create-github-app-token/issues/256)) ([5d7307b](https://github.com/actions/create-github-app-token/commit/5d7307be63501c0070c634b0ae8fec74e8208130))
fix(deps): bump @octokit/request from 9.2.3 to 10.0.2 (#256 )
2025-09-12 18:22:38 +00:00 · 2025-09-12 18:22:08 +00:00 · 2025-09-12 18:20:41 +00:00
12 changed files with 45385 additions and 1522 deletions
@@ -24,7 +24,7 @@ jobs:

      - uses: actions/setup-node@v4
        with:
-          node-version-file: package.json
+          node-version-file: .node-version
          cache: 'npm'

      - run: npm ci
@@ -23,7 +23,7 @@ jobs:

      - uses: actions/setup-node@v4
        with:
-          node-version-file: package.json
+          node-version-file: .node-version
          cache: 'npm'

      - run: npm ci
@@ -38,8 +38,8 @@ jobs:
      - uses: actions/checkout@v5
      - uses: actions/setup-node@v4
        with:
-          node-version-file: package.json
-          cache: 'npm'
+          node-version: 20
+          cache: "npm"
      - run: npm ci
      - run: npm run build
      - uses: ./ # Uses the action in the root directory
@@ -21,13 +21,13 @@ jobs:
      - uses: actions/checkout@v5
      - uses: actions/setup-node@v4
        with:
-          node-version-file: package.json
+          node-version-file: .node-version
          cache: 'npm'
      - name: Install dependencies
        run: npm ci
      - name: Run permission inputs update script
        run: node scripts/update-permission-inputs.js
      - name: Commit changes
-        uses: stefanzweifel/git-auto-commit-action@b863ae1933cb653a53c021fe36dbb774e1fb9403 # v5.2.0
+        uses: stefanzweifel/git-auto-commit-action@778341af668090896ca464160c2def5d1d1a3eb0 # v6.0.1
        with:
          commit_message: 'feat: update permission inputs'
@@ -0,0 +1 @@
+20.9.0
@@ -28,7 +28,7 @@ jobs:
  hello-world:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/create-github-app-token@v3
+      - uses: actions/create-github-app-token@v2
        id: app-token
        with:
          app-id: ${{ vars.APP_ID }}
@@ -47,13 +47,13 @@ jobs:
  auto-format:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/create-github-app-token@v3
+      - uses: actions/create-github-app-token@v2
        id: app-token
        with:
          # required
          app-id: ${{ vars.APP_ID }}
          private-key: ${{ secrets.PRIVATE_KEY }}
-      - uses: actions/checkout@v5
+      - uses: actions/checkout@v4
        with:
          token: ${{ steps.app-token.outputs.token }}
          ref: ${{ github.head_ref }}
@@ -73,7 +73,7 @@ jobs:
  auto-format:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/create-github-app-token@v3
+      - uses: actions/create-github-app-token@v2
        id: app-token
        with:
          # required
@@ -98,7 +98,7 @@ jobs:
  auto-format:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/create-github-app-token@v3
+      - uses: actions/create-github-app-token@v2
        id: app-token
        with:
          # required
@@ -135,7 +135,7 @@ jobs:
  hello-world:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/create-github-app-token@v3
+      - uses: actions/create-github-app-token@v2
        id: app-token
        with:
          app-id: ${{ vars.APP_ID }}
@@ -157,7 +157,7 @@ jobs:
  hello-world:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/create-github-app-token@v3
+      - uses: actions/create-github-app-token@v2
        id: app-token
        with:
          app-id: ${{ vars.APP_ID }}
@@ -182,7 +182,7 @@ jobs:
  hello-world:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/create-github-app-token@v3
+      - uses: actions/create-github-app-token@v2
        id: app-token
        with:
          app-id: ${{ vars.APP_ID }}
@@ -207,7 +207,7 @@ jobs:
  hello-world:
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/create-github-app-token@v3
+      - uses: actions/create-github-app-token@v2
        id: app-token
        with:
          app-id: ${{ vars.APP_ID }}
@@ -249,7 +249,7 @@ jobs:
        owners-and-repos: ${{ fromJson(needs.set-matrix.outputs.matrix) }}

    steps:
-      - uses: actions/create-github-app-token@v3
+      - uses: actions/create-github-app-token@v2
        id: app-token
        with:
          app-id: ${{ vars.APP_ID }}
@@ -279,7 +279,7 @@ jobs:
    steps:
      - name: Create GitHub App token
        id: create_token
-        uses: actions/create-github-app-token@v3
+        uses: actions/create-github-app-token@v2
        with:
          app-id: ${{ vars.GHES_APP_ID }}
          private-key: ${{ secrets.GHES_APP_PRIVATE_KEY }}
@@ -318,7 +318,7 @@ steps:
      echo "private-key=$private_key" >> "$GITHUB_OUTPUT"
  - name: Generate GitHub App Token
    id: app-token
-    uses: actions/create-github-app-token@v3
+    uses: actions/create-github-app-token@v2
    with:
      app-id: ${{ vars.APP_ID }}
      private-key: ${{ steps.decode.outputs.private-key }}
@@ -132,6 +132,6 @@ outputs:
  app-slug:
    description: "GitHub App slug"
 runs:
-  using: "node24"
+  using: "node20"
  main: "dist/main.cjs"
  post: "dist/post.cjs"
@@ -1,11 +1,41 @@
 import core from "@actions/core";
 import { request } from "@octokit/request";
+import { ProxyAgent, fetch as undiciFetch } from "undici";

-// Get the GitHub API URL from the action input and remove any trailing slash
 const baseUrl = core.getInput("github-api-url").replace(/\/$/, "");

-// Configure the default settings for GitHub API requests
+// https://docs.github.com/actions/hosting-your-own-runners/managing-self-hosted-runners/using-a-proxy-server-with-self-hosted-runners
+const proxyUrl =
+  process.env.https_proxy ||
+  process.env.HTTPS_PROXY ||
+  process.env.http_proxy ||
+  process.env.HTTP_PROXY;
+
+/* c8 ignore start */
+// Native support for proxies in Undici is under consideration: https://github.com/nodejs/undici/issues/1650
+// Until then, we need to use a custom fetch function to add proxy support.
+const proxyFetch = (url, options) => {
+  const urlHost = new URL(url).hostname;
+  const noProxy = (process.env.no_proxy || process.env.NO_PROXY || "").split(
+    ",",
+  );
+
+  if (!noProxy.includes(urlHost)) {
+    options = {
+      ...options,
+      dispatcher: new ProxyAgent(String(proxyUrl)),
+    };
+  }
+
+  return undiciFetch(url, options);
+};
+/* c8 ignore stop */
+
 export default request.defaults({
-  headers: { "user-agent": "actions/create-github-app-token" },
+  headers: {
+    "user-agent": "actions/create-github-app-token",
+  },
  baseUrl,
+  /* c8 ignore next */
+  request: proxyUrl ? { fetch: proxyFetch } : {},
 });
@@ -2,13 +2,10 @@
  "name": "create-github-app-token",
  "private": true,
  "type": "module",
-  "version": "3.0.0-beta.2",
+  "version": "2.1.2",
  "description": "GitHub Action for creating a GitHub App Installation Access Token",
-  "engines": {
-    "node": ">=24.4.0"
-  },
  "scripts": {
-    "build": "esbuild main.js post.js --bundle --outdir=dist --out-extension:.js=.cjs --platform=node --packages=bundle",
+    "build": "esbuild main.js post.js --bundle --outdir=dist --out-extension:.js=.cjs --platform=node --target=node20.0.0 --packages=bundle",
    "test": "c8 --100 ava tests/index.js",
    "coverage": "c8 report --reporter html",
    "postcoverage": "open-cli coverage/index.html"
@@ -17,8 +14,9 @@
  "dependencies": {
    "@actions/core": "^1.11.1",
    "@octokit/auth-app": "^7.2.1",
-    "@octokit/request": "^9.2.2",
-    "p-retry": "^6.2.1"
+    "@octokit/request": "^10.0.3",
+    "p-retry": "^6.2.1",
+    "undici": "^7.8.0"
  },
  "devDependencies": {
    "@octokit/openapi": "^19.1.0",
@@ -29,7 +27,6 @@
    "esbuild": "^0.25.8",
    "execa": "^9.6.0",
    "open-cli": "^8.0.0",
-    "undici": "^7.13.0",
    "yaml": "^2.8.1"
  },
  "release": {
@@ -46,6 +43,7 @@
      "@semantic-release/release-notes-generator",
      "@semantic-release/github",
      "@semantic-release/npm",
+      "semantic-release-plugin-github-breaking-version-tag",
      [
        "@semantic-release/git",
        {