chore: Use pull_request_target event fot scripts

pull_request event runs with changes from PR and thus uses a read-only token which cannot comment or close PRs from forks Using pull_request_target runs workflows from the target branch and thus remains secure and runs with write access token
fossasia · Dec 3, 2020 · a78dd3c · a78dd3c
1 parent 30674e3
commit a78dd3c
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/.github/workflows/scripts.yml b/.github/workflows/scripts.yml
@@ -1,7 +1,7 @@
 name: "Scripts"
 
 on:
-  pull_request:
+  pull_request_target:
 
 jobs:
   dependabot-approve: