Skip to content
Dependabot auto-approve and auto-merge

build(deps-dev): bump @types/node from 25.9.0 to 25.9.1 in the typescript group across 1 directory #3585

Sign in to view logs

build(deps-dev): bump @types/node from 25.9.0 to 25.9.1 in the typescript group across 1 directory

build(deps-dev): bump @types/node from 25.9.0 to 25.9.1 in the typescript group across 1 directory #3585

Workflow file for this run

.github/workflows/dependabot-auto-merge.yml at 71cb368
name: Dependabot auto-approve and auto-merge
on: pull_request
permissions:
contents: write
pull-requests: write
jobs:
dependabot:
runs-on: ubuntu-latest
if: github.event.pull_request.user.login == 'dependabot[bot]'
steps:
- name: Dependabot metadata
id: metadata
uses: dependabot/fetch-metadata@25dd0e34f4fe68f24cc83900b1fe3fe149efef98 # v3.1.0
with:
github-token: '${{ secrets.GITHUB_TOKEN }}'
- name: Enable auto-merge for npm updates
if: steps.metadata.outputs.package-ecosystem == 'npm'
run: gh pr merge --auto --merge "$PR_URL"
env:
PR_URL: ${{ github.event.pull_request.html_url }}
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- name: Auto-approve npm patch updates (except ignored packages)
if: |
steps.metadata.outputs.package-ecosystem == 'npm' &&
steps.metadata.outputs.update-type == 'version-update:semver-patch' &&
!contains(steps.metadata.outputs.dependency-names, '@atlaskit/pragmatic-drag-and-drop') &&
!contains(steps.metadata.outputs.dependency-names, 'preact') &&
!contains(steps.metadata.outputs.dependency-names, '@preact/signals') &&
!contains(steps.metadata.outputs.dependency-names, 'lottie-web')
run: gh pr review --approve "$PR_URL"
env:
PR_URL: ${{ github.event.pull_request.html_url }}
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}