Fix action rights#199
Conversation
Dependency Review✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.Scanned FilesNone |
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## main #199 +/- ##
=========================================
Coverage 100.00% 100.00%
=========================================
Files 4 4
Lines 81 81
Branches 14 14
=========================================
Hits 81 81 ☔ View full report in Codecov by Harness. |
There was a problem hiding this comment.
Pull request overview
This pull request updates CI and dependency automation configuration to avoid permission-related failures on forked pull requests while improving Dependabot update batching for GitHub Actions.
Changes:
- Skip the attestation and dependency-submission steps when the workflow runs for pull requests from forks.
- Add a Dependabot group to bundle all GitHub Actions updates into a single PR.
Reviewed changes
Copilot reviewed 2 out of 2 changed files in this pull request and generated no comments.
| File | Description |
|---|---|
| .github/workflows/dotnet.yml | Adds conditional execution to steps that require elevated permissions so they don’t run on forked PRs. |
| .github/dependabot.yml | Groups all github-actions updates together via a Dependabot group configuration. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
✅MegaLinter analysis: Success
Notices📣 MegaLinter 9.5.0 is out! Discover the new features and security recommendations in the release announcement. (Skip this info by defining See detailed reports in MegaLinter artifacts
|

No description provided.