diff options
| author | Silvan Mosberger <contact@infinisil.com> | 2023-09-12 01:16:00 +0200 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2023-09-12 01:16:00 +0200 |
| commit | d0a5c478f18a80583f5a197740266bc21b0233e3 (patch) | |
| tree | 953a046361128cb80d9974640159c94aa4989ea1 /.github | |
| parent | fc1239edf124b85e955d2516af081d58087d1d0c (diff) | |
| parent | 437d00dde346bdd596ffe2686ec4ba67e01fde65 (diff) | |
Merge pull request #254371 from NixOS/yu-re-ka-patch-1
workflows: Fix pkgs/by-name checks not running for non-committers
Diffstat (limited to '.github')
| -rw-r--r-- | .github/workflows/check-by-name.yml | 9 |
1 files changed, 7 insertions, 2 deletions
diff --git a/.github/workflows/check-by-name.yml b/.github/workflows/check-by-name.yml index da39846df4081..7a3598dbe2a4b 100644 --- a/.github/workflows/check-by-name.yml +++ b/.github/workflows/check-by-name.yml @@ -3,8 +3,10 @@ name: Check pkgs/by-name # The pre-built tool is fetched from a channel, -# making it work predictable on all PRs -on: pull_request +# making it work predictable on all PRs. +on: + # Using pull_request_target instead of pull_request avoids having to approve first time contributors + pull_request_target # The tool doesn't need any permissions, it only outputs success or not based on the checkout permissions: {} @@ -16,6 +18,9 @@ jobs: runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 + with: + # pull_request_target checks out the base branch by default + ref: refs/pull/${{ github.event.pull_request.number }}/merge - uses: cachix/install-nix-action@v23 - name: Determining channel to use for dependencies run: | |