Bump vite from 7.3.1 to 7.3.2 in the npm_and_yarn group across 1 directory #2
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Close Dependabot PRs | |
| on: | |
| pull_request: | |
| types: [opened, reopened, synchronize] | |
| jobs: | |
| close_dependabot_prs: | |
| runs-on: ubuntu-latest | |
| if: github.actor == 'dependabot[bot]' | |
| permissions: | |
| pull-requests: write | |
| issues: write | |
| steps: | |
| - name: Comment and close Dependabot PR | |
| env: | |
| GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| PR_NUMBER: ${{ github.event.pull_request.number }} | |
| REPO: ${{ github.repository }} | |
| run: | | |
| gh pr comment "$PR_NUMBER" --repo "$REPO" --body "👋 This PR has been automatically closed. | |
| **Reason**: This repository maintains its dependencies manually on a regular basis. | |
| Dependabot is enabled at the organization level but is not needed here. | |
| Security updates are tracked through our internal process." | |
| gh pr close "$PR_NUMBER" --repo "$REPO" |