dangoslen · dangoslen · Dec 28, 2021 · Aug 27, 2021 · Aug 28, 2021 · Oct 29, 2021
diff --git a/.github/workflows/pull_request.yml b/.github/workflows/pull_request.yml
@@ -21,7 +21,7 @@ jobs:
     needs: [ verify ]
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v2.3.4
+      - uses: actions/checkout@v2.4.0
         with: 
           token: ${{ secrets.ACTION_TOKEN }}
           ref: ${{ github.event.pull_request.head.sha }}
@@ -37,7 +37,7 @@ jobs:
   enforce-changelog:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v2.3.4
+      - uses: actions/checkout@v2.4.0
         with: 
           token: ${{ secrets.ACTION_TOKEN }}
           ref: ${{ github.event.pull_request.head.ref }}
@@ -62,7 +62,6 @@ jobs:
         with:
           skipLabels: "skip-changelog"
           expectedLatestVersion: ${{ steps.read-version.outputs.tag }}
-          token: ${{ secrets.GITHUB_TOKEN }}
 
       - if: failure()
         uses: unsplash/comment-on-pr@master

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -9,7 +9,7 @@ jobs:
   release:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v2.3.4
+      - uses: actions/checkout@v2.4.0
 
       - name: read versions
         id: read-version

diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,6 +1,18 @@
 # CHANGELOG
 Inspired from [Keep a Changelog](https://keepachangelog.com/en/1.0.0/)
 
+## [v3.0.0]
+:rocket: The 3.0.0 release of the Changelog Enforcer is here! This release relies soley on the GitHub API instead of local git commands from a cloned repository. This means, for example, that `actions/checkout` does **not** need to be run before running the enforcer.
+### Fixes
+- Fixes issue #142
+### Dependencies
+- Bumps `@vercel/ncc` from 0.28.6 to 0.31.1
+- Bumps `@actions/core` from 1.4.0 to 1.6.0
+- Bumps `jest` from 27.0.5 to 27.3.1
+- Bumps `actions/checkout` from 2.3.4 to 2.4.0
+- Bumps `uglify-js` from 3.13.9 to 3.14.3
+- Bumps `eslint` from 7.28.0 to 8.2.0
+
 ## [v2.3.1]
 ### Changed
 - Only runs on `pull_request` and `pull_request_target` events. This is to address issue #140

diff --git a/README.md b/README.md
@@ -25,9 +25,7 @@ jobs:
   changelog:
     runs-on: ubuntu-latest
     steps:
-    # The checkout step is needed since the enforcer relies on local git commands
-    - uses: actions/checkout@v2
-    - uses: dangoslen/changelog-enforcer@v2
+    - uses: dangoslen/changelog-enforcer@v3
 ```
 
 Other examples can be seen in the [example-workflows](./example-workflows) directory in this repository.
@@ -66,6 +64,10 @@ Below are the properties allowed by the Changelog Enforcer. These properties are
 
   Because the regex is passed as a `String` object, you will need to escape backslash characters (`\`) via `\\`.
 
+#### `token`
+* Default: `${{ github.token }}`
+* The token used to authenticate to the GitHub API. Uses the default token from the `github.token` context. Can be any access token you have  configured for your repository.
+
 ### Outputs
 
 #### `errorMessage`