Microsoft/vscode
1
0
Fork 0
mirror of https://github.com/microsoft/vscode.git synced 2026-04-23 18:19:12 +01:00
Code Issues Packages Projects Releases Wiki Activity

chore: start locking down workflows (#248544)

Browse Source
This commit is contained in:
Raymond Zhao
2025-05-09 11:22:00 -07:00
committed by GitHub
parent 5974364609
commit 15807c660e
6 changed files with 33 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
.github/workflows/no-yarn-lock-changes.yml vendored
View File

@@ -1,12 +1,14 @@
name: Prevent yarn.lock changes in PRs
on: [pull_request]
on: pull_request
permissions: {}
jobs:
main:
name: Prevent yarn.lock changes in PRs
runs-on: ubuntu-latest
steps:
- uses: octokit/request-action@v2.x
- uses: octokit/request-action@dad4362715b7fb2ddedf9772c8670824af564f0d # v2.4.0
id: get_permissions
with:
route: GET /repos/microsoft/vscode/collaborators/{username}/permission
@@ -22,7 +24,7 @@ jobs:
echo "should_run: ${{ !contains(fromJson('["admin", "maintain", "write"]'), fromJson(steps.get_permissions.outputs.data).permission) }}"
echo "should_run=${{ !contains(fromJson('["admin", "maintain", "write"]'), fromJson(steps.get_permissions.outputs.data).permission) && github.event.pull_request.user.login != 'dependabot[bot]' }}" >> $GITHUB_OUTPUT
- name: Get file changes
uses: trilom/file-changes-action@ce38c8ce2459ca3c303415eec8cb0409857b4272
uses: trilom/file-changes-action@a6ca26c14274c33b15e6499323aac178af06ad4b # v1.2.4
if: ${{ steps.control.outputs.should_run == 'true' }}
- name: Check for lockfile changes
if: ${{ steps.control.outputs.should_run == 'true' }}