ci(security): check for pull_request_target events in the access check (#282)

zimeg · web-flow · commit a678e5895f7e · 2024-01-17T12:31:27.000-08:00
diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
@@ -20,7 +20,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
     - name: Check user permissions
-      if: ${{ github.event_name == 'pull_request' && github.event.pull_request.author_association != 'MEMBER' }}
+      if: ${{ github.event_name == 'pull_request_target' && github.event.pull_request.author_association != 'MEMBER' }}
       run: |
         echo "Action was not triggered by an organization member. Exiting now."
         exit 1
