APP-3884 new workflow for PRs #3

Workflow file for this run

.github/workflows/pr-labeler.yml at da6e765

	name: PR Test Label Manager

	on:
	pull_request:
	# pull_request_target:
	# branches: [ main ]
	# types: [ opened, synchronize, reopened ]

	jobs:
	pr_test_label_manager:
	name: PR Test Label Manager
	runs-on: ubuntu-latest
	# if: \|
	# github.event_name == 'pull_request_target' &&
	# contains(fromJson('["opened", "synchronize", "reopened"]'), github.event.action)
	steps:
	- name: "Check Membership and Label PR"
	uses: actions/github-script@v6
	id: check-membership
	with:
	# github-token: ${{ secrets.PR_TOKEN }}
	github-token: ${{ secrets.GITHUB_TOKEN }}
	script: \|
	let prNumber = context.payload.pull_request?.number;
	const ownerAndRepo = {
	// note: this is hardcoded because I'm not sure how it will vary in fork PRs
	owner: "viamrobotics",
	repo: "${{ github.event.repository.name }}",
	};
	try {
	await github.rest.issues.removeLabel({...ownerAndRepo, issue_number: prNumber, name: "safe to test"});
	} catch (err) {
	core.info(`Non-fatal error ${err}, while trying to remove 'safe to test' label.`);
	}
	let orgResp = await github.rest.orgs.checkMembershipForUser({org: ownerAndRepo.owner, username: context.payload.sender.login});
	if (orgResp.status === 204) {
	// order of labeling events must be preserved, so two seperate calls
	await github.rest.issues.addLabels({...ownerAndRepo, issue_number: prNumber, labels: ["safe to test"]});
	return true;
	}
	return false;

	- name: Add Unsafe PR Comment
	if: steps.check-membership.outputs.result != 'true'
	uses: marocchino/sticky-pull-request-comment@v2
	with:
	recreate: true
	message: For security reasons, this PR must be labeled with `safe to test` in order for tests to run.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

APP-3884 new workflow for PRs #3

Workflow file

APP-3884 new workflow for PRs #3

Jobs

Run details

Workflow file for this run