chore(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.27.13 to 1.27.21 #115
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This workflow is activated when Dependabot creates a pull request (PR). | |
| # However, GitHub's security model restricts workflows triggered by Dependabot | |
| # from accessing any secrets. Furthermore, the GITHUB_TOKEN can only be used | |
| # in read-only mode. To work around this, we need to split the workflow into | |
| # two parts, see: | |
| # https://github.com/dependabot/dependabot-core/issues/3253#issuecomment-852541544. | |
| # This workflow will trigger our main workflow via a `workflow_run` event. This | |
| # approach will grant our main workflow access to repository secrets as described in | |
| # the GitHub docs: | |
| # https://docs.github.com/en/actions/using-workflows/events-that-trigger-workflows#workflow_run | |
| # The workflow started by the workflow_run event is able to access secrets and write tokens, | |
| # even if the previous workflow was not. This is useful in cases where the previous workflow | |
| # is intentionally not privileged, but you need to take a privileged action in a later workflow. | |
| name: Dependabot PR | |
| on: | |
| pull_request | |
| jobs: | |
| # We'll save the PR number of the PR that trigger this workflow to a file | |
| # and upload that for our triggered workflow to use. This number will be | |
| # used as (part of) the Docker tags that we will publish from that workflow, | |
| # see: | |
| # https://github.com/GuillaumeFalourd/poc-github-actions/blob/24b54ae5395b4175a26b0005d43e1c607f361fea/.github/workflows/25-artifacts-between-workflows-1.yml | |
| upload-pr-number: | |
| runs-on: ubuntu-latest | |
| if: ${{ github.actor == 'dependabot[bot]' }} | |
| steps: | |
| - name: Save the PR number in an artifact | |
| shell: bash | |
| run: echo "$PR_NUMBER" > pr_number.txt | |
| env: | |
| PR_NUMBER: ${{ github.event.number }} | |
| - name: Upload the PR number | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: pr_number | |
| path: ./pr_number.txt | |
| retention-days: 1 |