CheckerNetwork · juliangruber · Jun 17, 2024 · Jun 17, 2024 · Jun 17, 2024 · Jun 17, 2024
diff --git a/.github/workflows/dependabot-deploy-check.yml b/.github/workflows/dependabot-deploy-check.yml
@@ -0,0 +1,15 @@
+# https://github.com/dependabot/dependabot-core/issues/3253#issuecomment-852541544
+# This workflow doesn't have access to secrets and has a read-only token
+# It will trigger `deploy`, which has permissions
+name: Dependabot Deploy Check
+on:
+  push:
+    branches:
+      - main
+
+jobs:
+  check-dependabot:
+    runs-on: ubuntu-latest
+    if: ${{ github.actor == 'dependabot[bot]' }}
+    steps:
+      - run: echo "Commit created by Dependabot"
diff --git a/.github/workflows/deploy.yaml b/.github/workflows/deploy.yaml
@@ -3,6 +3,10 @@ on:
   push:
     branches:
       - main
+  workflow_run:
+    workflows: ["Dependabot Deploy Check"]
+    types: 
+      - completed
 jobs:
   stable:
     runs-on: ubuntu-latest