Daniel Volz
57c998ba09
* chore: update dependabot automation and agent governance * chore: trigger required CI checks for governance PR
38 lines
1.0 KiB
YAML
38 lines
1.0 KiB
YAML
name: Dependabot Automerge
|
|
|
|
on:
|
|
pull_request_target:
|
|
types:
|
|
- opened
|
|
- reopened
|
|
- synchronize
|
|
- ready_for_review
|
|
|
|
permissions:
|
|
contents: write
|
|
pull-requests: write
|
|
|
|
jobs:
|
|
enable-automerge:
|
|
if: github.actor == 'dependabot[bot]'
|
|
runs-on: ubuntu-latest
|
|
|
|
steps:
|
|
- name: Read Dependabot metadata
|
|
id: metadata
|
|
uses: dependabot/fetch-metadata@v2
|
|
with:
|
|
github-token: ${{ secrets.GITHUB_TOKEN }}
|
|
|
|
- name: Enable auto-merge for safe updates
|
|
if: >-
|
|
(steps.metadata.outputs.package-ecosystem == 'npm' ||
|
|
steps.metadata.outputs.package-ecosystem == 'github_actions') &&
|
|
(steps.metadata.outputs.update-type == 'version-update:semver-minor' ||
|
|
steps.metadata.outputs.update-type == 'version-update:semver-patch')
|
|
uses: peter-evans/enable-pull-request-automerge@v3
|
|
with:
|
|
token: ${{ secrets.GITHUB_TOKEN }}
|
|
pull-request-number: ${{ github.event.pull_request.number }}
|
|
merge-method: squash
|