diff options
| -rw-r--r-- | .github/workflows/nixos-manual.yml | 7 |
1 files changed, 6 insertions, 1 deletions
diff --git a/.github/workflows/nixos-manual.yml b/.github/workflows/nixos-manual.yml index 80ffc9c12be..2a1c1c29738 100644 --- a/.github/workflows/nixos-manual.yml +++ b/.github/workflows/nixos-manual.yml @@ -1,7 +1,9 @@ name: NixOS manual checks +permissions: read-all + on: - pull_request: + pull_request_target: branches-ignore: - 'release-**' paths: @@ -14,6 +16,9 @@ jobs: if: github.repository_owner == 'NixOS' steps: - uses: actions/checkout@v2 + with: + # pull_request_target checks out the base branch by default + ref: refs/pull/${{ github.event.pull_request.number }}/merge - uses: cachix/install-nix-action@v12 - name: Check DocBook files generated from Markdown are consistent run: | |