diff options
author | Evgeny Vereshchagin <evvers@ya.ru> | 2021-11-16 10:46:16 +0000 |
---|---|---|
committer | Frantisek Sumsal <frantisek@sumsal.cz> | 2021-11-17 10:14:33 +0000 |
commit | 7e7e31521ada806096c5c31a5892c2d0bbfc216c (patch) | |
tree | bdc88cda0ed953667829e05bdf9fff8e95ee7a07 | |
parent | fabf79b0dfb24d668a82b2fd70e73fcb8f575180 (diff) | |
download | systemd-7e7e31521ada806096c5c31a5892c2d0bbfc216c.tar.gz |
ci: run codeql on PRs from Dependabot
To make sure PRs like https://github.com/systemd/systemd/pull/21409
don't break anything.
-rw-r--r-- | .github/workflows/codeql-analysis.yml | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 460002eaeb..03517c9955 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -5,6 +5,8 @@ name: "CodeQL" on: + pull_request: + branches: [main] # It takes the workflow approximately 30 minutes to analyze the code base # so it doesn't seem to make much sense to trigger it on every PR or commit. # It runs daily at 01:00 to avoid colliding with the Coverity workflow. @@ -18,6 +20,7 @@ jobs: analyze: name: Analyze runs-on: ubuntu-latest + if: github.event_name == 'schedule' || github.event.pull_request.user.login == 'dependabot[bot]' concurrency: group: ${{ github.workflow }}-${{ matrix.language }}-${{ github.ref }} cancel-in-progress: true |