What problem or use case are you trying to solve?
Consider adding tests to ensure all token types of the CI triggered workflow to securely work. This might be tricky as we can't really trigger the current workflow until it gets merged into main and sometimes a new docker image is required to be released.

related:

• https://openhands-ai.slack.com/archives/C078L0FUGUX/p1743155016537279
• Rename --repo argument to --selected-repo to avoid confusion in the resolver workflow #7287
• [Bugfix] Add github_token verification in resolver utils #7065
• (initial bug) [Feat]: Support Gitlab PAT #7064

Describe the UX of the solution you'd like
This would be somewhat difficult as we currently support github PAT, github_token, and gitlab token(PAT?).

• Research how other workflow / action CI apps ensure their integrity
• Discuss with Openhands team to finalize an implementation plan

Do you have thoughts on the technical implementation?
TBU

Describe alternatives you've considered

Additional context