Skip to content

build(deps): bump dependabot/fetch-metadata from 2.0.0 to 2.1.0 #11

build(deps): bump dependabot/fetch-metadata from 2.0.0 to 2.1.0

build(deps): bump dependabot/fetch-metadata from 2.0.0 to 2.1.0 #11

Workflow file for this run

name: PR
on: pull_request_target
jobs:
assign-author:
if: github.event.action == 'opened'
runs-on: ubuntu-latest
steps:
- uses: samspills/[email protected]
with:
repo-token: ${{ secrets.BOT_TOKEN }}
approve-dependabot-pr:
if: github.event.action == 'opened' && github.event.pull_request.user.login == 'dependabot[bot]'
runs-on: ubuntu-latest
permissions:
pull-requests: read
steps:
- uses: dependabot/[email protected]
id: dependabot-metadata
- name: Merge patch and minor updates
if: steps.dependabot-metadata.outputs.update-type == 'version-update:semver-patch' || steps.dependabot-metadata.outputs.update-type == 'version-update:semver-minor'
run: gh pr merge --auto --merge "$PR_URL"
env:
PR_URL: ${{ github.event.pull_request.html_url }}
GITHUB_TOKEN: ${{ secrets.BOT_TOKEN }}
- name: Request manual review for major updates
if: steps.dependabot-metadata.outputs.update-type == 'version-update:semver-major' && toJSON(github.event.pull_request.requested_reviewers) == '[]'
run: gh pr edit "$PR_URL" --add-reviewer JonasWanke
env:
PR_URL: ${{ github.event.pull_request.html_url }}
GITHUB_TOKEN: ${{ secrets.BOT_TOKEN }}