ci: Do not run CodeQL on Dependabot push events.

Signed-off-by: Anders Kaseorg <anders@zulip.com>
2025-11-02 13:03:29 +00:00 · 2021-08-04 02:34:21 -07:00
parent d2a15f613f
commit a9501772c1
1 changed files with 5 additions and 1 deletions
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -1,6 +1,10 @@
 name: "Code scanning"

-on: [push, pull_request]
+on:
+  push:
+    branches-ignore:
+      - dependabot/** # https://github.com/github/codeql-action/pull/435
+  pull_request: {}

 jobs:
  CodeQL: