From 6ef07672a6e79db7b41cbfdce5b1f0d161b6841b Mon Sep 17 00:00:00 2001
From: echobt <mathis.massimino+echo@cortex.foundation>
Date: Mon, 2 Feb 2026 18:01:28 +0000
Subject: [PATCH] fix(ci): allow optional secrets in publish-r2 reusable
 workflow

When using 'secrets: inherit' in the calling workflow (dev-deploy.yml),
the secrets must be marked as required: false to avoid validation errors.
The secrets are still passed through inherit and will be available at
runtime from the repository/organization settings.
---
 .github/workflows/publish-r2.yml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/publish-r2.yml b/.github/workflows/publish-r2.yml
index dbfa1317..adfcbe55 100644
--- a/.github/workflows/publish-r2.yml
+++ b/.github/workflows/publish-r2.yml
@@ -42,11 +42,11 @@ on:
         type: string
     secrets:
       R2_ACCESS_KEY_ID:
-        required: true
+        required: false
       R2_SECRET_ACCESS_KEY:
-        required: true
+        required: false
       CLOUDFLARE_ACCOUNT_ID:
-        required: true
+        required: false
 
 env:
   BINARY_NAME: Cortex