fix: auto-merge workflow permissions and PR detection#50
Conversation
📝 WalkthroughWalkthroughModified the Dependabot auto-merge workflow to trigger on standard pull_request events rather than pull_request_target, updated merge command to use gh CLI with event PR number, added explicit workflow permissions, and adjusted environment variables. Changes
Estimated code review effort🎯 2 (Simple) | ⏱️ ~8 minutes Poem
🚥 Pre-merge checks | ✅ 3✅ Passed checks (3 passed)
✏️ Tip: You can configure your own custom pre-merge checks in the settings. ✨ Finishing touches🧪 Generate unit tests (beta)
No actionable comments were generated in the recent review. 🎉 Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
Fixes auto-merge workflow failures:
check_suitetrigger (doesn't have PR context)pull_requesttrigger onlycontents: writeandpull-requests: writeGH_TOKENandGH_REPOenv vars for gh CLIThis will allow dependabot PRs to auto-merge when CI passes.
Summary by CodeRabbit
No user-facing changes to report. This PR contains only internal infrastructure improvements to the GitHub Actions workflow for automated dependency management, with no impact on end-user functionality.