From 027f31f87bb54234e68147ff7922f5c413d0a739 Mon Sep 17 00:00:00 2001
From: Lucas Santana <lucas.diassantana@gmail.com>
Date: Wed, 11 Mar 2026 15:07:42 -0300
Subject: [PATCH] fix(ci): use built-in GITHUB_TOKEN in budget guard workflow

---
 .github/workflows/reusable-actions-budget-guard.yml | 5 +----
 CHANGELOG.md                                        | 3 +++
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/reusable-actions-budget-guard.yml b/.github/workflows/reusable-actions-budget-guard.yml
index 4b44df5..6646820 100644
--- a/.github/workflows/reusable-actions-budget-guard.yml
+++ b/.github/workflows/reusable-actions-budget-guard.yml
@@ -21,9 +21,6 @@ on:
         required: false
         type: string
         default: "85"
-    secrets:
-      github_token:
-        required: false
     outputs:
       usage_pct:
         description: Current-month usage percentage against monthly cap
@@ -71,7 +68,7 @@ jobs:
           MONTHLY_CAP_MINUTES: ${{ inputs.monthly_cap_minutes }}
           WARN_PCT: ${{ inputs.warn_pct }}
           DEGRADE_PCT: ${{ inputs.degrade_pct }}
-          GITHUB_TOKEN_INPUT: ${{ secrets.github_token }}
+          GITHUB_TOKEN_INPUT: ${{ secrets.GITHUB_TOKEN }}
         run: ./.workflow-source/.github/scripts/actions-budget-guard.sh
 
       - name: Job summary
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 9980913..3bdf3e8 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -21,3 +21,6 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 - `reusable-docker-build.yml`: replaced `secrets.*` usage in Docker Hub login
   `if` guard with env-backed checks to avoid workflow-file evaluation errors.
+- `reusable-actions-budget-guard.yml`: removed custom `github_token` workflow
+  secret declaration (reserved name) and now reads `secrets.GITHUB_TOKEN`
+  directly to prevent workflow-file validation failures on push.