Merge pull request #73 from cisagov/improvement/skip_codeql_on_push_f…

…or_dependabot_branches Skip CodeQL Workflow for Dependabot Branches on push Events
cisagov · Apr 15, 2021 · c6cd8d7 · c6cd8d7
2 parents 9db8301 + 3d40ce3
commit c6cd8d7
Showing 1 changed file with 3 additions and 2 deletions.
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
@@ -8,8 +8,9 @@ name: "CodeQL"
 
 on:
   push:
-  # Push on all branches
-  # branches: [develop]
+    # Dependabot triggered push events have read-only access, but uploading code
+    # scanning requires write access.
+    branches-ignore: [dependabot/**]
   pull_request:
     # The branches below must be a subset of the branches above
     branches: [develop]