diff --git a/.github/workflows/apply.yml b/.github/workflows/apply.yml
index 78bdcce..67e5985 100644
--- a/.github/workflows/apply.yml
+++ b/.github/workflows/apply.yml
@@ -37,7 +37,7 @@ jobs:
         id: app-token
         uses: actions/create-github-app-token@1b10c78c7865c340bc4f6099eb2f838309f1e8c3 # v3
         with:
-          app-id: ${{ vars.PERIBOLOS_APP_ID }}
+          client-id: ${{ vars.PERIBOLOS_APP_CLIENT_ID }}
           private-key: ${{ secrets.PERIBOLOS_APP_PRIVATE_KEY }}
           owner: pyvista
 
diff --git a/.github/workflows/dry-run.yml b/.github/workflows/dry-run.yml
index 7983622..abddbe2 100644
--- a/.github/workflows/dry-run.yml
+++ b/.github/workflows/dry-run.yml
@@ -25,7 +25,7 @@ jobs:
         id: app-token
         uses: actions/create-github-app-token@1b10c78c7865c340bc4f6099eb2f838309f1e8c3 # v3
         with:
-          app-id: ${{ vars.PERIBOLOS_APP_ID }}
+          client-id: ${{ vars.PERIBOLOS_APP_CLIENT_ID }}
           private-key: ${{ secrets.PERIBOLOS_APP_PRIVATE_KEY }}
           owner: pyvista
           # Scope the token to read-only. Dry-run only reads org state; the