Skip to content

chore: bump actions/setup-java from 4.2.1 to 4.2.2 in the workflow-actions group #8

chore: bump actions/setup-java from 4.2.1 to 4.2.2 in the workflow-actions group

chore: bump actions/setup-java from 4.2.1 to 4.2.2 in the workflow-actions group #8

name: Dependabot auto-approve
on: pull_request
permissions:
pull-requests: write
contents: write
# https://docs.github.com/en/code-security/dependabot/working-with-dependabot/automating-dependabot-with-github-actions
jobs:
dependabot:
runs-on: ubuntu-latest
if: github.actor == 'dependabot[bot]'
steps:
# https://github.com/dependabot/fetch-metadata
- name: Dependabot metadata
id: dependabot-metadata
uses: "dependabot/fetch-metadata@dbb049abf0d677abbd7f7eee0375145b417fdd34" # v2.2.0
- name: Automatically approve & merge Dependabot patch PRs
if: ${{steps.dependabot-metadata.outputs.update-type == 'version-update:semver-patch'}}
run: |
gh pr review --approve "$PR_URL"
gh pr merge --auto --squash "$PR_URL"
env:
PR_URL: ${{github.event.pull_request.html_url}}
GH_TOKEN: ${{ github.token }}