Tested on a public repo main branch, a public PR from fork, and a private repo's main branch.
Interestingly, security-events: write is needed even though the action works from forks. My best guess is that there's a different code path involved on forks, or perhaps PRs in general.
Resolves #4.
Tested on a public repo main branch, a public PR from fork, and a private repo's main branch.
Interestingly,
security-events: write
is needed even though the action works from forks. My best guess is that there's a different code path involved on forks, or perhaps PRs in general.