Avoid uploading eslint sarif for dependabot PR

Dependabot does not have `security-events: write` permission.
2024-09-23 19:13:10 +00:00
parent 59f3205286
commit dc79c53259
1 changed files with 1 additions and 1 deletions
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -103,7 +103,7 @@ jobs:
          npm run lint-ci

      - name: Upload ESLint results to Code Scanning
-        if: "${{ !cancelled() }}"
+        if: "${{ !cancelled() && !startsWith(github.head_ref, 'dependabot/')}}"
        uses: github/codeql-action/upload-sarif@main
        with:
          sarif_file: extensions/ql-vscode/build/eslint.sarif