Update dependabot-approve-merge.yml

Signed-off-by: Joas Schilling <213943+nickvergessen@users.noreply.github.com>
author: Joas Schilling <213943+nickvergessen@users.noreply.github.com> 2022-08-03 15:22:21 +0300
committer: GitHub <noreply@github.com> 2022-08-03 15:22:21 +0300
commit: 2f12f60261c85e90f90fc9c63897f31e2940302f (patch)
tree: b0a7a5fdbf1c7db170904b67c4224eab11f323fe
parent: 0be521f7fd1af120ca75d9717390850e33a700f5 (diff)
1 files changed, 7 insertions, 0 deletions
diff --git a/.github/workflows/dependabot-approve-merge.yml b/.github/workflows/dependabot-approve-merge.yml
index 19a1311..0d6e343 100644
--- a/.github/workflows/dependabot-approve-merge.yml
+++ b/.github/workflows/dependabot-approve-merge.yml
@@ -8,13 +8,20 @@ name: Dependabot
 on:
   pull_request_target:
     branches:
+      - main
       - master
       - stable*
 
+permissions:
+  contents: read
+
 jobs:
   auto-approve-merge:
     if: github.actor == 'dependabot[bot]'
     runs-on: ubuntu-latest
+    permissions:
+      # for hmarr/auto-approve-action to approve PRs
+      pull-requests: write 
 
     steps:
       # Github actions bot approve
author	Joas Schilling <213943+nickvergessen@users.noreply.github.com>	2022-08-03 15:22:21 +0300
committer	GitHub <noreply@github.com>	2022-08-03 15:22:21 +0300
commit	2f12f60261c85e90f90fc9c63897f31e2940302f (patch)
tree	b0a7a5fdbf1c7db170904b67c4224eab11f323fe
parent	0be521f7fd1af120ca75d9717390850e33a700f5 (diff)