From 2d74bf263a703a739ffb6a23179089cd12b52cb3 Mon Sep 17 00:00:00 2001
From: jack-berg <34418638+jack-berg@users.noreply.github.com>
Date: Mon, 5 Feb 2024 17:44:17 -0600
Subject: [PATCH] Define CODECOV token (#6186)

---
 .github/workflows/build.yml | 2 ++
 RELEASING.md                | 5 ++++-
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index 210f70e2ff7..9b46b0565a2 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -77,6 +77,8 @@ jobs:
 
       - uses: codecov/codecov-action@v3
         if: ${{ matrix.coverage }}
+        env:
+          CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }}
 
       - uses: actions/upload-artifact@v4
         if: ${{ matrix.coverage }}
diff --git a/RELEASING.md b/RELEASING.md
index 6c707cf43b3..cf9c0ebc197 100644
--- a/RELEASING.md
+++ b/RELEASING.md
@@ -77,7 +77,7 @@ Create a PR against the main branch with the changes.
 
 ## Credentials
 
-The following credentials are required for publishing (and automatically set in Github Actions):
+The following credentials are required for building or publishing (and automatically set in Github Actions):
 
 * `GPG_PRIVATE_KEY` and `GPG_PASSWORD`: GPG private key and password for signing.
 * `SONATYPE_USER` and `SONATYPE_KEY`: Sonatype username and password.
@@ -89,6 +89,9 @@ The following credentials are required for publishing (and automatically set in
   * To obtain `SONATYPE_USER` and `SONATYPE_KEY` for your account, login
     to [oss.sonatype.org](https://oss.sonatype.org/) and navigate to Profile -> User Token -> Access
     User Token.
+* `CODECOV_TOKEN`: Token used for uploading codecov reports. Each maintainer can obtain their own
+  credential from codecov as
+  described [here](https://docs.codecov.com/docs/adding-the-codecov-token#github-actions).
 
 Additionally, credentials are stored with maintainers via
 the [OpenTelemetry 1Password](https://opentelemetry.1password.com/signin) account. The following