.github/workflows/labels.yml

   1 name: "Label PR"
   2
   3 on:
   4   pull_request_target:
   5     types: [edited, opened, synchronize, reopened]
   6
   7 # WARNING:
   8 # When extending this action, be aware that $GITHUB_TOKEN allows some write
   9 # access to the GitHub API. This means that it should not evaluate user input in
  10 # a way that allows code injection.
  11
  12 permissions:
  13   contents: read
  14   pull-requests: write
  15
  16 jobs:
  17   labels:
  18     runs-on: ubuntu-latest
  19     if: "github.repository_owner == 'NixOS' && !contains(github.event.pull_request.title, '[skip treewide]')"
  20     steps:
  21     - uses: actions/labeler@8558fd74291d67161a8a78ce36a881fa63b766a9 # v5.0.0
  22       with:
  23         repo-token: ${{ secrets.GITHUB_TOKEN }}
  24         sync-labels: true