diff --git a/.github/workflows/ci_cd.yml b/.github/workflows/ci_cd.yml
index e9cea8c5f29..08b77896b80 100644
--- a/.github/workflows/ci_cd.yml
+++ b/.github/workflows/ci_cd.yml
@@ -78,7 +78,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Exit if dependabot triggered the workflow
-        if: github.event.pull_request.user.login == 'dependabot[bot]'
+        if: github.triggering_actor == 'dependabot[bot]'
         run: |
           echo "::warning::Dependabot is not allowed to trigger this workflow. Please review carefully the changes before running the workflow manually."
           exit 1
diff --git a/doc/changelog.d/6787.maintenance.md b/doc/changelog.d/6787.maintenance.md
new file mode 100644
index 00000000000..9bae5c43d2c
--- /dev/null
+++ b/doc/changelog.d/6787.maintenance.md
@@ -0,0 +1 @@
+Fix dependabot PR blocking job
diff --git a/zizmor.yml b/zizmor.yml
new file mode 100644
index 00000000000..eee484a73d4
--- /dev/null
+++ b/zizmor.yml
@@ -0,0 +1,5 @@
+rules:
+  bot-conditions:
+    ignore:
+      # ignore line 81 in ci_cd.yml
+      - ci_cd.yml:81