c27048a57d
* [StepSecurity] ci: Harden GitHub Actions Signed-off-by: StepSecurity Bot <bot@stepsecurity.io> * imprement coderabbit recommendations --------- Signed-off-by: StepSecurity Bot <bot@stepsecurity.io> Co-authored-by: Igor Velkov <325961+iav@users.noreply.github.com>
40 lines
958 B
YAML
40 lines
958 B
YAML
name: "Data: Sync labels"
|
|
run-name: Sync Labels from YML on ${{ github.event_name }}
|
|
|
|
on:
|
|
workflow_dispatch:
|
|
push:
|
|
branches:
|
|
- "main"
|
|
paths:
|
|
- ".github/labels.yml"
|
|
pull_request:
|
|
paths:
|
|
- ".github/labels.yml"
|
|
|
|
permissions:
|
|
contents: read
|
|
|
|
jobs:
|
|
labeler:
|
|
permissions:
|
|
contents: read # for actions/labeler to determine modified files
|
|
pull-requests: write # for actions/labeler to add labels to PRs
|
|
issues: write # for actions/labeler to add labels to issues
|
|
|
|
if: ${{ github.repository_owner == 'Armbian' }}
|
|
runs-on: ubuntu-latest
|
|
|
|
steps:
|
|
- name: Checkout
|
|
uses: actions/checkout@v6
|
|
|
|
- name: Run Labeler
|
|
uses: crazy-max/ghaction-github-labeler@v6
|
|
with:
|
|
github-token: ${{ secrets.GITHUB_TOKEN }}
|
|
yaml-file: .github/labels.yml
|
|
dry-run: ${{ github.event_name == 'pull_request' }}
|
|
exclude: |
|
|
Maintenance*
|