| name: Dependabot auto-merge | |
| on: | |
| - pull_request_target | |
| permissions: | |
| contents: write | |
| pull-requests: write | |
| packages: read | |
| jobs: | |
| dependabot: | |
| runs-on: ubuntu-latest | |
| if: ${{ github.actor == 'dependabot[bot]' }} | |
| steps: | |
| - name: Dependabot metadata | |
| id: metadata | |
| uses: dependabot/fetch-metadata@v2.5.0 | |
| with: | |
| github-token: "${{ secrets.GITHUB_TOKEN }}" | |
| skip-commit-verification: true | |
| - name: Checkout repository | |
| uses: actions/checkout@v6 | |
| - name: Approve a PR if not already approved | |
| run: | | |
| gh pr checkout "$PR_URL" | |
| if [ "$(gh pr status --json reviewDecision -q .currentBranch.reviewDecision)" != "APPROVED" ]; | |
| then | |
| gh pr review --approve "$PR_URL" | |
| else | |
| echo "PR already approved."; | |
| fi | |
| env: | |
| PR_URL: ${{github.event.pull_request.html_url}} | |
| GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} | |
| - name: Enable auto-merge for Dependabot PRs | |
| if: ${{ contains(github.event.pull_request.title, 'bump')}} | |
| run: gh pr merge --auto --squash "$PR_URL" | |
| env: | |
| PR_URL: ${{github.event.pull_request.html_url}} | |
| GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} | |