From b5ad978d4474c9735e178b3c740032a089236e3b Mon Sep 17 00:00:00 2001
From: hkfires <10558748+hkfires@users.noreply.github.com>
Date: Sun, 12 Oct 2025 21:21:51 +0800
Subject: [PATCH] feat(managementasset): Authenticate GitHub API requests

---
 internal/managementasset/updater.go | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/internal/managementasset/updater.go b/internal/managementasset/updater.go
index a1b8370a..921bb389 100644
--- a/internal/managementasset/updater.go
+++ b/internal/managementasset/updater.go
@@ -159,6 +159,10 @@ func fetchLatestAsset(ctx context.Context, client *http.Client) (*releaseAsset,
 	}
 	req.Header.Set("Accept", "application/vnd.github+json")
 	req.Header.Set("User-Agent", httpUserAgent)
+	gitURL := strings.ToLower(strings.TrimSpace(os.Getenv("GITSTORE_GIT_URL")))
+	if tok := strings.TrimSpace(os.Getenv("GITSTORE_GIT_TOKEN")); tok != "" && strings.Contains(gitURL, "github.com") {
+		req.Header.Set("Authorization", "Bearer "+tok)
+	}
 
 	resp, err := client.Do(req)
 	if err != nil {