Avoid uploading eslint sarif for dependabot PR

Dependabot does not have `security-events: write` permission.s
github · Sep 23, 2024 · 9580b7e · 9580b7e
1 parent ef13051
commit 9580b7e
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/.github/workflows/pr-checks.yml b/.github/workflows/pr-checks.yml
@@ -30,7 +30,7 @@ jobs:
       - name: Upload sarif
         uses: github/codeql-action/upload-sarif@v3
         # Only upload SARIF for the latest version of Node.js
-        if: "always() && matrix.node-types-version == 'current'"
+        if: "always() && matrix.node-types-version == 'current' && !startsWith(github.head_ref, 'dependabot/')"
         with:
           sarif_file: eslint.sarif
           category: eslint