Skip to content

chore(deps): bump sigstore/cosign-installer from 3.7.0 to 3.8.0 #431

chore(deps): bump sigstore/cosign-installer from 3.7.0 to 3.8.0

chore(deps): bump sigstore/cosign-installer from 3.7.0 to 3.8.0 #431

name: goreleaser-deprecation-check
on:
push:
pull_request:
jobs:
check:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: goreleaser/goreleaser-action@v6
with:
distribution: goreleaser-pro
install-only: true
- name: check
run: |
goreleaser check goreleaser*.yaml
dependabot:
needs: [check]
runs-on: ubuntu-latest
permissions:
pull-requests: write
contents: write
if: ${{ github.actor == 'dependabot[bot]' && github.event_name == 'pull_request'}}
steps:
- id: metadata
uses: dependabot/fetch-metadata@d7267f607e9d3fb96fc2fbe83e0af444713e90b7 # v2.3.0
with:
github-token: "${{ secrets.GITHUB_TOKEN }}"
- run: |
gh pr review --approve "$PR_URL"
gh pr merge --squash "$PR_URL"
env:
PR_URL: ${{github.event.pull_request.html_url}}
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}