diff options
| author | Donatas Abraitis <donatas@opensourcerouting.org> | 2022-05-25 18:07:40 +0200 |
|---|---|---|
| committer | Donatas Abraitis <donatas@opensourcerouting.org> | 2022-05-25 18:07:40 +0200 |
| commit | 4588d0cb4955e47a7ad3c38963a018a0284ac990 (patch) | |
| tree | 21611cbf7c02c1d741a34d748e02e71e6da1b4f6 /.github/workflows | |
| parent | Merge pull request #11279 from opensourcerouting/fix/labeler_gh_actions (diff) | |
| download | frr-4588d0cb4955e47a7ad3c38963a018a0284ac990.tar.xz frr-4588d0cb4955e47a7ad3c38963a018a0284ac990.zip | |
github: Use pull_request_target as a target
And drop checkout action - not needed.
Due to the dangers inherent to automatic processing of PRs, GitHub’s standard
pull_request workflow trigger by default prevents write permissions and
secrets access to the target repository. However, in some scenarios such
access is needed to properly process the PR.
To this end the pull_request_target workflow trigger was introduced.
Signed-off-by: Donatas Abraitis <donatas@opensourcerouting.org>
Diffstat (limited to '.github/workflows')
| -rw-r--r-- | .github/workflows/base-branch-label.yml | 3 |
1 files changed, 1 insertions, 2 deletions
diff --git a/.github/workflows/base-branch-label.yml b/.github/workflows/base-branch-label.yml index 9572ee7ee..01da28091 100644 --- a/.github/workflows/base-branch-label.yml +++ b/.github/workflows/base-branch-label.yml @@ -1,7 +1,7 @@ name: Add base branch label on: - pull_request: + pull_request_target: types: - opened - reopened @@ -13,7 +13,6 @@ jobs: contents: read pull-requests: write steps: - - uses: actions/checkout@v2 - uses: actions-ecosystem/action-add-labels@v1 with: labels: | |