Skip to content
This repository has been archived by the owner on Oct 18, 2024. It is now read-only.

Enabling Code Sign Validation through 1ES template #11

Enabling Code Sign Validation through 1ES template

Enabling Code Sign Validation through 1ES template #11

name: Dependabot Approve
on:
issue_comment:
types: [created]
permissions:
pull-requests: write
jobs:
dependabotApprove:
runs-on: ubuntu-latest
# GITHUB_TOKEN change from read-write to read-only on 2024-02-01 requires permissions block
# https://docs.opensource.microsoft.com/github/apps/permission-changes/
# https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
permissions:
actions: write
contents: read
security-events: write
if: ${{ github.event.issue.pull_request && github.event.issue.user.login == 'dependabot[bot]' && startswith(github.event.comment.body, '@gitbot dependabot-approve') }}
steps:
- name: Approve a PR
run: gh pr review --approve "$PR_URL"
env:
PR_URL: ${{ github.event.issue.pull_request.html_url }}
GITHUB_TOKEN: ${{ secrets.SERVICEACCOUNT_PAT }}