molecule-ci#2 attempted token: '' to force anonymous on the cross-repo
checkout. CI on plugin-molecule-careful-bash@663bf72 (post-merge of #2)
revealed actions/checkout@v4 errors with:
::error::Input required and not supplied: token
Even though token's input definition is required:false with a default,
the action's runtime auth-helper calls getInput('token', {required: true})
internally — empty string fails that check.
Fix: replace the cross-repo actions/checkout with a direct git clone
shell step. molecule-ci is public; anonymous git clone has neither the
auth-trips-Gitea-404 problem (#2's target) nor the empty-token-input-
required problem (#2's actual failure shape).
3 files updated, 4 sites total:
* validate-plugin.yml (1 site)
* validate-workspace-template.yml (2 sites)
* validate-org-template.yml (1 site)
Refs: internal#46. Closes the third root cause uncovered by the
verification cycle on plugin-molecule-careful-bash.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
3eb62072a2