Skip to content

Ci/zizmor

Ci/zizmor #1953

---
name: "component-owners"
# It's insecure to use pull_request_target if you intend to check out code
# from that PR. This just reads the config file in the pull request base, and
# is not an issue currently. We will need to use this to comment on PRs coming
# from forked repositories.
on: [pull_request_target] # yamllint disable-line rule:truthy
concurrency:
group: ${{ github.workflow }}-${{ github.event.number }}
cancel-in-progress: true
permissions:
contents: read
jobs:
component-owners:
name: Assign component owners
runs-on: ubuntu-latest
permissions:
pull-requests: write # Required to set reviewers
steps:
- name: Assign component owners
uses: dyladan/component-owners@main
with:
config-file: .github/component-owners.yml
repo-token: ${{ github.token }}
assign-owners: true
request-owner-reviews: true