Skip to content

Commit

Permalink
Merge pull request #789 from edoardopirovano/secure-workflow
Browse files Browse the repository at this point in the history 
Improve workflow to update dependencies
  • Loading branch information
Edoardo Pirovano authored and GitHub committed Oct 22, 2021
2 parents bee5aac + 70f007a commit 0ebee75
Showing 1 changed file with 3 additions and 3 deletions.
6 changes: 3 additions & 3 deletions .github/workflows/update-dependencies.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@ jobs:
update:
name: Update dependencies
runs-on: macos-latest
if: contains(github.event.pull_request.labels.*.name, 'Update dependencies')
if: contains(github.event.pull_request.labels.*.name, 'Update dependencies') && ${{ github.event.pull_request.head.repo.full_name == 'github/codeql-action' }}
steps:
- name: Checkout repository
uses: actions/checkout@v2
Expand All @@ -24,8 +24,8 @@ jobs:
env:
BRANCH: '${{ github.head_ref }}'
run: |
git fetch
git checkout $BRANCH
git fetch origin "$BRANCH" --depth=1
git checkout "origin/$BRANCH"
sudo npm install --force -g npm@latest
npm install
npm ci
Expand Down

0 comments on commit 0ebee75

Please sign in to comment.