diff --git a/.github/aw/actions-lock.json b/.github/aw/actions-lock.json index 80130e4a1a..2db5179bb9 100644 --- a/.github/aw/actions-lock.json +++ b/.github/aw/actions-lock.json @@ -100,7 +100,7 @@ "version": "v5.6.0", "sha": "a26af69be951a213d495a4c3e4e4022e16d87065" }, - "actions/upload-artifact@v4": { + "actions/upload-artifact@v4.6.2": { "repo": "actions/upload-artifact", "version": "v4.6.2", "sha": "ea165f8d65b6e75b540449e92b4886f43607fa02" diff --git a/.github/workflows/dependabot-burner.lock.yml b/.github/workflows/dependabot-burner.lock.yml index 81e06a5986..c4258c6a1d 100644 --- a/.github/workflows/dependabot-burner.lock.yml +++ b/.github/workflows/dependabot-burner.lock.yml @@ -25,14 +25,10 @@ # Imports: # - shared/campaign.md # -# frontmatter-hash: 38b0ad5430565f4152442d2397e3eb1d45abf9dbc7b123eee156dd25b2799037 +# frontmatter-hash: d450c954c557790fd2747a97adc633027ab85421d23765d3b50a6b92f92b4622 name: "Dependabot Burner" "on": - schedule: - - cron: "32 23 * * *" - # Friendly format: daily (scattered) - # skip-if-no-match: is:pr is:open author:app/dependabot # Skip-if-no-match processed as search check in pre-activation job workflow_dispatch: permissions: {} @@ -44,8 +40,6 @@ run-name: "Dependabot Burner" jobs: activation: - needs: pre_activation - if: needs.pre_activation.outputs.activated == 'true' runs-on: ubuntu-slim permissions: contents: read @@ -1254,49 +1248,6 @@ jobs: path: /tmp/gh-aw/threat-detection/detection.log if-no-files-found: ignore - pre_activation: - runs-on: ubuntu-slim - permissions: - contents: read - outputs: - activated: ${{ (steps.check_membership.outputs.is_team_member == 'true') && (steps.check_skip_if_no_match.outputs.skip_no_match_check_ok == 'true') }} - steps: - - name: Checkout actions folder - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6 - with: - sparse-checkout: | - actions - persist-credentials: false - - name: Setup Scripts - uses: ./actions/setup - with: - destination: /opt/gh-aw/actions - - name: Check team membership for workflow - id: check_membership - uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8.0.0 - env: - GH_AW_REQUIRED_ROLES: admin,maintainer,write - with: - github-token: ${{ secrets.GITHUB_TOKEN }} - script: | - const { setupGlobals } = require('/opt/gh-aw/actions/setup_globals.cjs'); - setupGlobals(core, github, context, exec, io); - const { main } = require('/opt/gh-aw/actions/check_membership.cjs'); - await main(); - - name: Check skip-if-no-match query - id: check_skip_if_no_match - uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # v8.0.0 - env: - GH_AW_SKIP_QUERY: "is:pr is:open author:app/dependabot" - GH_AW_WORKFLOW_NAME: "Dependabot Burner" - GH_AW_SKIP_MIN_MATCHES: "1" - with: - script: | - const { setupGlobals } = require('/opt/gh-aw/actions/setup_globals.cjs'); - setupGlobals(core, github, context, exec, io); - const { main } = require('/opt/gh-aw/actions/check_skip_if_no_match.cjs'); - await main(); - safe_outputs: needs: - agent diff --git a/.github/workflows/dependabot-burner.md b/.github/workflows/dependabot-burner.md index 5476213e47..550e94100b 100644 --- a/.github/workflows/dependabot-burner.md +++ b/.github/workflows/dependabot-burner.md @@ -3,8 +3,8 @@ name: Dependabot Burner description: Burns down open Dependabot pull requests. on: - schedule: daily - skip-if-no-match: 'is:pr is:open author:app/dependabot' + #schedule: daily + #skip-if-no-match: 'is:pr is:open author:app/dependabot' workflow_dispatch: permissions: