build(deps): bump github/codeql-action from 3.31.7 to 4.31.11 #102
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Auto Cherry-Pick from Upstream | |
| on: | |
| workflow_dispatch: | |
| inputs: | |
| base_branch: | |
| description: "Base branch to create the PR against" | |
| required: true | |
| default: "main" | |
| mode: | |
| description: "Run mode: cherry-pick or verify" | |
| required: false | |
| default: "cherry-pick" | |
| package_manager: | |
| description: "Specify package manager (npm or yarn)" | |
| required: false | |
| default: "yarn" | |
| script: | |
| description: "Specify a script to run after audit fix" | |
| required: false | |
| default: "yarn build" | |
| yarn_version: | |
| description: "Specify a yarn version" | |
| required: false | |
| type: string | |
| default: "4.9.2" | |
| pull_request: | |
| types: [opened, synchronize, labeled] | |
| permissions: | |
| contents: write | |
| pull-requests: write | |
| packages: read | |
| issues: write | |
| jobs: | |
| cherry-pick: | |
| if: github.event_name == 'workflow_dispatch' || contains(fromJson(toJson(github.event.pull_request.labels)).*.name, 'review-required') | |
| uses: step-security/reusable-workflows/.github/workflows/auto_cherry_pick.yaml@v1 | |
| with: | |
| original-owner: "docker" | |
| repo-name: "setup-buildx-action" | |
| base_branch: ${{ inputs.base_branch }} | |
| mode: ${{ github.event_name == 'pull_request' && 'verify' || inputs.mode }} | |
| package_manager: ${{inputs.package_manager || 'yarn' }} | |
| script: ${{ inputs.script || 'yarn build' }} | |
| yarn_version: ${{ inputs.yarn_version || '4.9.2' }} |