Skip to content

Bird

Bird #19

name: update-lockfiles
on:
# pull_request_target:
# types: [closed]
pull_request:
branches:
- "release-**"
permissions:
contents: read
env:
GH_TOKEN: ${{ secrets.BAZEL_IO_TOKEN }}
jobs:
update-lockfiles:
runs-on: ubuntu-latest
steps:
- name: Harden Runner
uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142
with:
egress-policy: audit
# jobs:
# cherry-picker-on-closed:
# if: github.event.action == 'closed'
# runs-on: ubuntu-latest
# steps:
# - name: Harden Runner
# uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142
# with:
# egress-policy: audit
# - if: github.event.pull_request
# name: Run cherrypicker on closed PR
# uses: iancha1992/continuous-integration/actions/cherry_picker@updatelockfile_PRs
# with:
# triggered-on: closed
# pr-number: ${{ github.event.number }}
# is-prod: False
# - if: github.event.issue
# name: Run cherrypicker on closed issue
# uses: iancha1992/continuous-integration/actions/cherry_picker@updatelockfile_PRs
# with:
# triggered-on: closed
# pr-number: ${{ github.event.issue.number }}
# is-prod: False
# cherry-picker-on-milestoned:
# if: github.event.action == 'milestoned'
# runs-on: ubuntu-latest
# steps:
# - name: Harden Runner
# uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142
# with:
# egress-policy: audit
# - if: startsWith(github.event.issue.body, 'Forked from')
# name: Run cherrypicker on comment
# uses: iancha1992/continuous-integration/actions/cherry_picker@updatelockfile_PRs
# with:
# triggered-on: commented
# pr-number: ${{ github.event.issue.body }}
# milestone-title: ${{ github.event.milestone.title }}
# milestoned-issue-number: ${{ github.event.issue.number }}
# is-prod: False
# - if: startsWith(github.event.issue.body, '### Commit IDs')
# name: Run cherrypicker on demand
# uses: iancha1992/continuous-integration/actions/cherry_picker@updatelockfile_PRs
# with:
# triggered-on: ondemand
# milestone-title: ${{ github.event.milestone.title }}
# milestoned-issue-number: ${{ github.event.issue.number }}
# issue-title: ${{ github.event.issue.title }}
# issue-body: ${{ github.event.issue.body }}
# is-prod: False