Bump elgohr/Publish-Docker-Github-Action from 8a77ff7e106a82f06cefb2670b851ff562c53079 to 977fe38375c65e8e3b01d226d72c1f7d488e45dc #33

	name: CI Gated PR Comments

	on:
	pull_request_target:
	types:
	- opened
	branches:
	- dev
	- master

	jobs:
	comment-on-new-pr:
	name: Comment New PR
	if: github.event.pull_request.head.repo.id != github.event.pull_request.base.repo.id \|\| github.event.pull_request.user.id == 49699333
	runs-on: ubuntu-latest
	steps:
	- name: Generate App Token
	id: app-token-generation
	uses: actions/create-github-app-token@v1
	with:
	app-id: ${{ secrets.APP_ID }}
	private-key: ${{ secrets.APP_PRIVATE_KEY }}

	- name: Comment on new Fork PR
	if: github.event.pull_request.user.id != 49699333
	uses: thollander/actions-comment-pull-request@e2c37e53a7d2227b61585343765f73a9ca57eda9
	with:
	message: Thank you for contributing to ${{ github.event.pull_request.base.repo.name }}! The workflow '${{ github.workflow }}' requires repository secrets and will not run without approval. Maintainers can add the `CI Cleared` label to allow it to run. Note that any changes to ci-security.yml and ci-pipeline.yml will not be reflected.
	github-token: ${{ steps.app-token-generation.outputs.token }}

	- name: Comment on dependabot PR
	if: github.event.pull_request.user.id == 49699333
	uses: thollander/actions-comment-pull-request@e2c37e53a7d2227b61585343765f73a9ca57eda9
	with:
	message: Set the milestone to the next ${{ (github.head_ref == 'master' && 'patch') \|\| 'minor' }} version, check for supply chain attacks, and then add the `CI Cleared` label to allow CI to run.
	github-token: ${{ steps.app-token-generation.outputs.token }}

Provide feedback