From 045f54a044690af458e22727e0738f126ec5d825 Mon Sep 17 00:00:00 2001 From: damaz91 Date: Tue, 30 Jun 2026 09:29:09 +0000 Subject: [PATCH] chore: update governance to use workflow_run for review events This avoids missing secret issues when running governance checks on PRs from forks. TAG=agy CONV=22877122-68cc-4a76-b2c9-bebcca93f853 --- .github/workflows/governance.yml | 5 +++-- .github/workflows/pr-review-listener.yml | 12 ++++++++++++ 2 files changed, 15 insertions(+), 2 deletions(-) create mode 100644 .github/workflows/pr-review-listener.yml diff --git a/.github/workflows/governance.yml b/.github/workflows/governance.yml index 698fc99..8d41b89 100644 --- a/.github/workflows/governance.yml +++ b/.github/workflows/governance.yml @@ -13,8 +13,9 @@ on: assigned, unassigned ] - pull_request_review: - types: [submitted, dismissed] + workflow_run: + workflows: ["PR Review Listener"] + types: [completed] jobs: governance: diff --git a/.github/workflows/pr-review-listener.yml b/.github/workflows/pr-review-listener.yml new file mode 100644 index 0000000..641e7a9 --- /dev/null +++ b/.github/workflows/pr-review-listener.yml @@ -0,0 +1,12 @@ +name: PR Review Listener +on: + pull_request_review: + types: [submitted, dismissed] + +jobs: + signal: + runs-on: ubuntu-latest + steps: + - name: Signal success + run: | + echo "PR ${{ github.event.pull_request.number }} review state changed."