From: Michał Gołębiowski-Owczarek <m.goleb@gmail.com>
Date: Mon, 13 Nov 2023 17:18:20 +0000 (+0100)
Subject: Build: Don't run CI push workflows for dependabot branches
X-Git-Tag: 4.0.0-beta~17
X-Git-Url: https://source.dussan.org/?a=commitdiff_plain;h=635cb152e7daac658223455aaab2f81204b5b215;p=jquery.git

Build: Don't run CI push workflows for dependabot branches

Without this change, dependabot PRs run double checks - one set for the `push`
part and one for the `pull_request` part.

Closes gh-5353
---

diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index e0680cf2c..d2cb93885 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -1,8 +1,9 @@
 name: "Code scanning - action"
 
 on:
-  push:
   pull_request:
+  push:
+    branches-ignore: "dependabot/**"
   schedule:
     - cron: '0 4 * * 6'
 
@@ -30,7 +31,7 @@ jobs:
     # the head of the pull request instead of the merge commit.
     - run: git checkout HEAD^2
       if: ${{ github.event_name == 'pull_request' }}
-      
+
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL
       uses: github/codeql-action/init@00e563ead9f72a8461b24876bee2d0c2e8bd2ee8 # v2.21.5
diff --git a/.github/workflows/node.js.yml b/.github/workflows/node.js.yml
index 241cd36bb..eb88597cb 100644
--- a/.github/workflows/node.js.yml
+++ b/.github/workflows/node.js.yml
@@ -1,6 +1,9 @@
 name: CI
 
-on: [push, pull_request]
+on:
+  pull_request:
+  push:
+    branches-ignore: "dependabot/**"
 
 permissions:
   contents: read # to fetch code (actions/checkout)