Closed adonis0147 closed 1 month ago
@luizm bump :)
Sorry for two year dalay, could you test if it is working as you expected?
Sorry for two year dalay, could you test if it is working as you expected?
Hi @luizm , thanks for merging this PR. The modification in our project has been working well for a while.
Currently, the action comments the pull requests only when it is triggered by
pull_request
event (See L205).However, according to the article Keeping your GitHub Actions and workflows secure, the workflow has read-only permissions when it is triggered by
pull_request
event and it may fail and get the following errors.This pr enables the action to comment the pull requests when it is triggered by
pull_request_target
which has write permissions and fixes the above the errors.