Skip to content
Merged
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 4 additions & 4 deletions .github/workflows/welcome-first-time-contrib.yml
Original file line number Diff line number Diff line change
Expand Up @@ -4,9 +4,9 @@
name: Welcome first time contributors

on:
pull_request:
types:
- opened
pull_request_target: # Needed to write welcome comments on fork PRs; script only uses the GitHub API.
types:
- opened # zizmor: ignore[dangerous-triggers]
issues:
types:
- opened
Expand All @@ -18,7 +18,7 @@
jobs:
welcome:
name: Post welcome message
if: ${{ !contains(fromJson('["asyncapi-bot", "dependabot[bot]", "dependabot-preview[bot]", "allcontributors[bot]"]'), github.actor) }} # zizmor: ignore[obfuscation]
if: ${{ !contains(fromJson('["asyncapi-bot", "dependabot[bot]", "dependabot-preview[bot]", "allcontributors[bot]"]'), github.event.issue.user.login || github.event.pull_request.user.login) }} # zizmor: ignore[obfuscation]

Check failure

Code scanning / SonarCloud

Workflows should not rely on unverified GitHub context values to trust events High

Workflows should not rely on forgeable GitHub context values to trust events See more on SonarQube Cloud
runs-on: ubuntu-latest
permissions:
contents: read # Required to read repository data for checking if it's the user's first contribution
Expand Down
Loading