Skip to content

chore: Bump conventional-changelog-conventionalcommits from 5.0.0 to 7.0.2 in /.release #248

chore: Bump conventional-changelog-conventionalcommits from 5.0.0 to 7.0.2 in /.release

chore: Bump conventional-changelog-conventionalcommits from 5.0.0 to 7.0.2 in /.release #248

name: Auto approve dependabot
# Warning: The pull_request_target event is granted a read/write repository
# token and can access secrets, even when it is triggered from a fork. Although
# the workflow runs in the context of the base of the pull request, you should
# make sure that you do not check out, build, or run untrusted code from the
# pull request with this event. Additionally, any caches share the same scope as
# the base branch, and to help prevent cache poisoning, you should not save the
# cache if there is a possibility that the cache contents were altered.
on: pull_request_target
jobs:
approve:
if: github.actor == 'dependabot[bot]' || github.actor == 'dependabot-preview[bot]'
runs-on: ubuntu-latest
steps:
- uses: hmarr/auto-approve-action@v2.2.1
with:
github-token: "${{ secrets.GITHUB_TOKEN }}"