Skip to content
Dependabot auto-merge

Bump step-security/harden-runner from 2.12.1 to 2.12.2 #231

Sign in to view logs

Bump step-security/harden-runner from 2.12.1 to 2.12.2

Bump step-security/harden-runner from 2.12.1 to 2.12.2 #231

Workflow file for this run

.github/workflows/dependabot_automerge.yml at 5bf3f14
# from https://github.com/gofiber/swagger/blob/main/.github/workflows/dependabot_automerge.yml
name: Dependabot auto-merge
on:
pull_request:
permissions:
contents: write
pull-requests: write
jobs:
automerge:
runs-on: ubuntu-latest
if: github.event.pull_request.user.login == 'dependabot[bot]' && github.repository == 'ruby/rake'
steps:
- name: Dependabot metadata
uses: dependabot/fetch-metadata@08eff52bf64351f401fb50d4972fa95b9f2c2d1b # v2.4.0
id: metadata
- name: Wait for status checks
uses: lewagon/wait-on-check-action@ccfb013c15c8afb7bf2b7c028fb74dc5a068cccc # v1.3.4
with:
repo-token: ${{ secrets.GITHUB_TOKEN }}
ref: ${{ github.event.pull_request.head.sha || github.sha }}
check-regexp: test*
wait-interval: 30
- name: Auto-merge for Dependabot PRs
if: ${{ steps.metadata.outputs.update-type == 'version-update:semver-minor' || steps.metadata.outputs.update-type == 'version-update:semver-patch'}}
run: gh pr merge --auto --merge "$PR_URL"
env:
PR_URL: ${{ github.event.pull_request.html_url }}
GH_TOKEN: ${{ secrets.MATZBOT_DEPENDABOT_MERGE_TOKEN }}