Closed twschiller closed 2 years ago
Internal ticket created : CY-4719
Hi @twschiller, unfortunately there are some behaviours that changed regarding Dependabot, please check this compiled FAQ https://github.com/dependabot/dependabot-core/issues/3253#issuecomment-852541544
That said, here the concrete problem, is that the action triggered by dependabot cannot access your secrets.CODACY_PROJECT_TOKEN
. On the FAQ, there are multiple options, although at the moment there are no perfect ones.
Alternatively, you can add a github.actor != 'dependabot[bot]'
on your action, to avoid it getting triggered by dependabot.
Thanks, we're currently using github.actor != 'dependabot[bot]'
and will continue to go that route
Is there any special configuration/setup required for using with Dependabot?
We're getting the following error:
And the relevant portion of our CI configuration: