fix(CodeQL): more triggers (#8591) #210
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This action automates the upload of our source content to crowdin. | |
| # See translations-sync.yml for the automation to download new translations on a schedule | |
| # See translations-pr-lint.yml for quality control we conduct on ingress of new translations. | |
| name: Crowdin Upload | |
| on: | |
| push: | |
| branches: [main] | |
| # Cancel any runs on the same branch | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.ref }} | |
| cancel-in-progress: true | |
| jobs: | |
| upload-to-crowdin: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Harden Runner | |
| uses: step-security/harden-runner@e3f713f2d8f53843e71c69a996d56f51aa9adfb9 # v2.14.1 | |
| with: | |
| egress-policy: audit | |
| - name: Checkout | |
| uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 | |
| # see all the options at https://github.com/crowdin/github-action | |
| - name: crowdin action | |
| uses: crowdin/github-action@b4b468cffefb50bdd99dd83e5d2eaeb63c880380 # v2.14.0 | |
| with: | |
| # only upload sources, ensuring this is a one-way operation | |
| upload_sources: true | |
| upload_translations: false | |
| download_translations: false | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| # A numeric ID, found at https://crowdin.com/project/nodejs-web/tools/api | |
| CROWDIN_PROJECT_ID: ${{ secrets.CROWDIN_PROJECT_ID }} | |
| # Created from https://crowdin.com/settings#api-key logged in using nodejs-crowdin-bot | |
| CROWDIN_PERSONAL_TOKEN: ${{ secrets.CROWDIN_PERSONAL_TOKEN }} |