From f297d2bea18f0a66adebd6921dd4f7bbb2c177f8 Mon Sep 17 00:00:00 2001 From: afernand Date: Tue, 21 Nov 2023 16:43:50 +0100 Subject: [PATCH 1/5] feat: Dependabot automerge workflow --- .github/workflows/dependabot_automerge.yml | 27 ++++++++++++++++++++++ 1 file changed, 27 insertions(+) create mode 100644 .github/workflows/dependabot_automerge.yml diff --git a/.github/workflows/dependabot_automerge.yml b/.github/workflows/dependabot_automerge.yml new file mode 100644 index 0000000000..eabe0a8731 --- /dev/null +++ b/.github/workflows/dependabot_automerge.yml @@ -0,0 +1,27 @@ +name: Dependabot auto-merge +on: pull_request + +permissions: + pull-requests: write + +jobs: + dependabot: + runs-on: ubuntu-latest + if: github.actor == 'dependabot[bot]' + steps: + - name: Dependabot metadata + id: metadata + uses: dependabot/fetch-metadata@v1 + with: + github-token: "${{ secrets.GITHUB_TOKEN }}" + - name: Approve a PR + run: gh pr review --approve "$PR_URL" + env: + PR_URL: ${{github.event.pull_request.html_url}} + GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} + - name: Enable auto-merge for Dependabot PRs + if: steps.metadata.outputs.update-type == 'version-update:semver-patch' + run: gh pr merge --auto --merge "$PR_URL" + env: + PR_URL: ${{github.event.pull_request.html_url}} + GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} \ No newline at end of file From e70be752d5d8f9b6e36bd93e78b7577dd5014af9 Mon Sep 17 00:00:00 2001 From: afernand Date: Wed, 22 Nov 2023 09:44:34 +0100 Subject: [PATCH 2/5] Disable automerge on major versions --- .github/workflows/dependabot_automerge.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/dependabot_automerge.yml b/.github/workflows/dependabot_automerge.yml index eabe0a8731..8c1476c4e8 100644 --- a/.github/workflows/dependabot_automerge.yml +++ b/.github/workflows/dependabot_automerge.yml @@ -20,7 +20,7 @@ jobs: PR_URL: ${{github.event.pull_request.html_url}} GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} - name: Enable auto-merge for Dependabot PRs - if: steps.metadata.outputs.update-type == 'version-update:semver-patch' + if: steps.metadata.outputs.update-type != 'version-update:semver-major' run: gh pr merge --auto --merge "$PR_URL" env: PR_URL: ${{github.event.pull_request.html_url}} From 5ef9a3d3a23c3e8a77ea2617f931b8303d0c2685 Mon Sep 17 00:00:00 2001 From: Alex Fernandez <21alex295@gmail.com> Date: Wed, 22 Nov 2023 09:46:51 +0100 Subject: [PATCH 3/5] Update .github/workflows/dependabot_automerge.yml Co-authored-by: Roberto Pastor Muela <37798125+RobPasMue@users.noreply.github.com> --- .github/workflows/dependabot_automerge.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/dependabot_automerge.yml b/.github/workflows/dependabot_automerge.yml index 8c1476c4e8..79eda30aa7 100644 --- a/.github/workflows/dependabot_automerge.yml +++ b/.github/workflows/dependabot_automerge.yml @@ -13,7 +13,7 @@ jobs: id: metadata uses: dependabot/fetch-metadata@v1 with: - github-token: "${{ secrets.GITHUB_TOKEN }}" + github-token: ${{ secrets.GITHUB_TOKEN }} - name: Approve a PR run: gh pr review --approve "$PR_URL" env: From 11919db1d6cc5632824726ae62fe64ebc2595601 Mon Sep 17 00:00:00 2001 From: Alex Fernandez <21alex295@gmail.com> Date: Wed, 22 Nov 2023 09:46:57 +0100 Subject: [PATCH 4/5] Update .github/workflows/dependabot_automerge.yml Co-authored-by: Roberto Pastor Muela <37798125+RobPasMue@users.noreply.github.com> --- .github/workflows/dependabot_automerge.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/dependabot_automerge.yml b/.github/workflows/dependabot_automerge.yml index 79eda30aa7..00cdc37d68 100644 --- a/.github/workflows/dependabot_automerge.yml +++ b/.github/workflows/dependabot_automerge.yml @@ -14,6 +14,7 @@ jobs: uses: dependabot/fetch-metadata@v1 with: github-token: ${{ secrets.GITHUB_TOKEN }} + - name: Approve a PR run: gh pr review --approve "$PR_URL" env: From a7f741222e6026099ba5539a4270737609696fb7 Mon Sep 17 00:00:00 2001 From: afernand Date: Wed, 22 Nov 2023 09:47:54 +0100 Subject: [PATCH 5/5] Add blank line --- .github/workflows/dependabot_automerge.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/dependabot_automerge.yml b/.github/workflows/dependabot_automerge.yml index 00cdc37d68..132d94fe87 100644 --- a/.github/workflows/dependabot_automerge.yml +++ b/.github/workflows/dependabot_automerge.yml @@ -20,6 +20,7 @@ jobs: env: PR_URL: ${{github.event.pull_request.html_url}} GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} + - name: Enable auto-merge for Dependabot PRs if: steps.metadata.outputs.update-type != 'version-update:semver-major' run: gh pr merge --auto --merge "$PR_URL"