keii.dev / nodejs.org
The Node.js® Website
fork atom
nodejs.org / .github / workflows / pull-request-label.yml
at main 1.6 kB view raw
1# Security Notes 2# Only selected Actions are allowed within this repository. Please refer to (https://github.com/nodejs/nodejs.org/settings/actions) 3# for the full list of available actions. If you want to add a new one, please reach out a maintainer with Admin permissions. 4# REVIEWERS, please always double-check security practices before merging a PR that contains Workflow changes!! 5# AUTHORS, please only use actions with explicit SHA references, and avoid using `@master` or `@main` references or `@version` tags. 6 7name: Pull Request CI Label 8 9on: 10 pull_request_target: 11 branches: 12 - main 13 types: 14 - labeled 15 16defaults: 17 run: 18 # This ensures that the working directory is the root of the repository 19 working-directory: ./ 20 21permissions: 22 # This permission is required by `actions-ecosystem/action-remove-label` 23 pull-requests: write 24 25jobs: 26 # This Job removes the `github_actions:pull-request` label after it got applied 27 # which allows people with write access to the repository to easily reapply the label if they need to trigger 28 # this Workflow again 29 remove_pull_request_label: 30 name: Remove Pull Request Label 31 runs-on: ubuntu-latest 32 steps: 33 - name: Harden Runner 34 uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0 35 with: 36 egress-policy: audit 37 38 - name: Remove GitHub Actions Label 39 uses: actions-ecosystem/action-remove-labels@2ce5d41b4b6aa8503e285553f75ed56e0a40bae0 # v1.3.0 40 with: 41 labels: github_actions:pull-request