mirror of
https://github.com/imjasonh/govulncheck-action
synced 2026-07-09 09:07:50 +00:00
Currently, the dependabot-auto-merge workflow (which rebuilds dist/) only runs if the actor is dependabot[bot]. If a human rebases a dependabot PR (e.g. via UI or CLI), this workflow is skipped, causing CI to fail because dist/ is out of sync. This change: 1. Relaxes the condition to run on any branch starting with 'dependabot/', regardless of actor. 2. Adds workflow_dispatch trigger for manual fixes. 3. Updates CI workflow permissions. Signed-off-by: Jason Hall <imjasonh@gmail.com> |
||
|---|---|---|
| .. | ||
| ci.yml | ||
| dependabot-auto-merge.yml | ||
| example.yml | ||
| malcontent.yaml | ||