chore(deps): bump @xmldom/xmldom from 0.8.12 to 0.8.13 #7
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Dependabot Automerge | |
| # Triggered for every Dependabot PR update. The workflow enables GitHub's | |
| # native auto-merge feature, which means the actual merge only happens once | |
| # ALL required branch-protection status checks pass (build, typecheck, audit…). | |
| on: | |
| pull_request: | |
| types: [opened, synchronize, reopened, ready_for_review] | |
| permissions: | |
| contents: write | |
| pull-requests: write | |
| jobs: | |
| automerge: | |
| name: Enable automerge for safe Dependabot PRs | |
| runs-on: ubuntu-latest | |
| # Only act on Dependabot PRs — never on human-authored PRs. | |
| if: github.actor == 'dependabot[bot]' | |
| steps: | |
| - name: Fetch Dependabot metadata | |
| id: metadata | |
| uses: dependabot/fetch-metadata@v3 | |
| with: | |
| github-token: ${{ secrets.GITHUB_TOKEN }} | |
| # Enable automerge for MINOR and PATCH dev-dependency updates. | |
| # GitHub will only execute the actual merge once all required status | |
| # checks (defined in branch protection) have passed — this is the | |
| # gate that makes automerge safe. | |
| - name: Enable automerge (dev deps, minor/patch only) | |
| if: | | |
| steps.metadata.outputs.dependency-type == 'direct:development' && | |
| ( | |
| steps.metadata.outputs.update-type == 'version-update:semver-patch' || | |
| steps.metadata.outputs.update-type == 'version-update:semver-minor' | |
| ) | |
| run: gh pr merge --auto --squash "$PR_URL" | |
| env: | |
| PR_URL: ${{ github.event.pull_request.html_url }} | |
| GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| # Also automerge GitHub Actions patches/minors — low risk, no runtime impact. | |
| - name: Enable automerge (GitHub Actions, minor/patch only) | |
| if: | | |
| steps.metadata.outputs.package-ecosystem == 'github-actions' && | |
| ( | |
| steps.metadata.outputs.update-type == 'version-update:semver-patch' || | |
| steps.metadata.outputs.update-type == 'version-update:semver-minor' | |
| ) | |
| run: gh pr merge --auto --squash "$PR_URL" | |
| env: | |
| PR_URL: ${{ github.event.pull_request.html_url }} | |
| GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} |