Skip to content

Bump actions/labeler from 5.0.0 to 6.0.1 #3286

Bump actions/labeler from 5.0.0 to 6.0.1

Bump actions/labeler from 5.0.0 to 6.0.1 #3286

Workflow file for this run

name: Pull Request Labeler
on: [pull_request_target]
jobs:
Label:
permissions:
contents: read
pull-requests: write
runs-on: ubuntu-latest
steps:
- name: Labeler
# XXX: !!! SECURITY WARNING !!!
# pull_request_target has write access to the repo, and can read secrets. We
# need to audit any external actions executed in this workflow and make sure no
# checked out code is run (not even installing dependencies, as installing
# dependencies usually can execute pre/post-install scripts). We should also
# only use hashes to pick the action to execute (instead of tags or branches).
# For more details read:
# https://securitylab.github.com/research/github-actions-preventing-pwn-requests/
uses: actions/labeler@634933edcd8ababfe52f92936142cc22ac488b1b # 6.0.1
with:
repo-token: "${{ secrets.GITHUB_TOKEN }}"
dot: true