diff --git a/.github/workflows/ci-security.yml b/.github/workflows/ci-security.yml index fa2561c742..b048468dc2 100644 --- a/.github/workflows/ci-security.yml +++ b/.github/workflows/ci-security.yml @@ -23,7 +23,7 @@ jobs: if: github.event.action == 'opened' && !contains(github.event.pull_request.labels.*.name, 'CI Cleared') && github.event.pull_request.user.id != 49699333 uses: thollander/actions-comment-pull-request@1d3973dc4b8e1399c0620d3f2b1aa5e795465308 with: - message: Thank you for contributing to ${{ github.event.pull_request.base.repo.name }}! The workflow '${{ github.workflow }}' requires repository secrets and will not run without approval. Maintainers can add the `CI Cleared` label to allow it to run. Please note that any changes to the workflow file will not be reflected in the run. + message: Thank you for contributing to ${{ github.event.pull_request.base.repo.name }}! The workflow '${{ github.workflow }}' requires repository secrets and will not run without approval. Maintainers can add the `CI Cleared` label to allow it to run. - name: Comment on dependabot PR if: github.event.action == 'opened' && !contains(github.event.pull_request.labels.*.name, 'CI Cleared') && github.event.pull_request.user.id == 49699333 @@ -67,7 +67,7 @@ jobs: dispatch-method: workflow_dispatch owner: ${{ github.repository_owner }} repo: ${{ github.event.pull_request.base.repo.name }} - ref: ${{ github.event.pull_request.base.ref }} + ref: "refs/pull/${{ github.event.pull_request.number }}/merge" workflow: ci-pipeline.yml token: ${{ github.token }} workflow-inputs: |