# This is the workflow to automatically approve and merge dependabot PRs
#
name: Dependencies

on:
  # Allows you to call this workflow from other workflows
  workflow_call:

  # Allows you to run this workflow manually from the Actions tab
  workflow_dispatch:

permissions:
  contents: read

jobs:
  dependency-review:
    name: '⛓️ Dependency Review'
    runs-on: ubuntu-latest
    if: ${{ github.event_name == 'pull_request' }}
    permissions:
      contents: read
      pull-requests: write

    steps:
      - name: '☁️ Checkout repository'
        uses: actions/checkout@v6

      - name: '🛡️ Dependency Review'
        uses: actions/dependency-review-action@v4
