Updating dependabot-approve-merge.yml workflow from templatefeat/workflow-auto-update-dependabot-approve-merge.yml

Signed-off-by: Nextcloud bot <bot@nextcloud.com>
author: Nextcloud bot <bot@nextcloud.com> 2022-06-11 20:25:35 +0300
committer: Nextcloud bot <bot@nextcloud.com> 2022-06-11 20:25:35 +0300
commit: 73d6ba9aceeeb58bbe4e4e9ca7d8d2e8de820573 (patch)
tree: 0424a5206526a37a578e9f1bcbe0b8c90b42c504
parent: e11b0524df3ca0272d3457aaa939aa976b618b7d (diff)
1 files changed, 7 insertions, 0 deletions
diff --git a/.github/workflows/dependabot-approve-merge.yml b/.github/workflows/dependabot-approve-merge.yml
index 19a1311..0d6e343 100644
--- a/.github/workflows/dependabot-approve-merge.yml
+++ b/.github/workflows/dependabot-approve-merge.yml
@@ -8,13 +8,20 @@ name: Dependabot
 on:
   pull_request_target:
     branches:
+      - main
       - master
       - stable*
 
+permissions:
+  contents: read
+
 jobs:
   auto-approve-merge:
     if: github.actor == 'dependabot[bot]'
     runs-on: ubuntu-latest
+    permissions:
+      # for hmarr/auto-approve-action to approve PRs
+      pull-requests: write 
 
     steps:
       # Github actions bot approve
author	Nextcloud bot <bot@nextcloud.com>	2022-06-11 20:25:35 +0300
committer	Nextcloud bot <bot@nextcloud.com>	2022-06-11 20:25:35 +0300
commit	73d6ba9aceeeb58bbe4e4e9ca7d8d2e8de820573 (patch)
tree	0424a5206526a37a578e9f1bcbe0b8c90b42c504
parent	e11b0524df3ca0272d3457aaa939aa976b618b7d (diff)