From c568bb1baa63012fd4b3e02960b0f26a72d6412c Mon Sep 17 00:00:00 2001
From: Richard Hansen <rhansen@rhansen.org>
Date: Fri, 28 Jan 2022 01:40:13 -0500
Subject: [PATCH] ci: Skip frontend tests for Dependabot PRs

---
 .github/workflows/frontend-admin-tests.yml | 11 +++++++++++
 .github/workflows/frontend-tests.yml       | 22 ++++++++++++++++++++++
 src/bin/plugins/lib/frontend-tests.yml     | 11 +++++++++++
 3 files changed, 44 insertions(+)

diff --git a/.github/workflows/frontend-admin-tests.yml b/.github/workflows/frontend-admin-tests.yml
index 41dbe8a7c..9cf2a433c 100644
--- a/.github/workflows/frontend-admin-tests.yml
+++ b/.github/workflows/frontend-admin-tests.yml
@@ -14,6 +14,17 @@ jobs:
         node: [12, 14, 16]
 
     steps:
+      -
+        name: Fail if Dependabot
+        if: github.actor == 'dependabot[bot]'
+        run: |
+          cat <<EOF >&2
+          Frontend tests skipped because Dependabot can't access secrets.
+          Manually re-run the jobs to run the frontend tests.
+          For more information, see:
+          https://github.blog/changelog/2021-02-19-github-actions-workflows-triggered-by-dependabot-prs-will-run-with-read-only-permissions/
+          EOF
+          exit 1
       -
         name: Generate Sauce Labs strings
         id: sauce_strings
diff --git a/.github/workflows/frontend-tests.yml b/.github/workflows/frontend-tests.yml
index 678079909..47cfc9860 100644
--- a/.github/workflows/frontend-tests.yml
+++ b/.github/workflows/frontend-tests.yml
@@ -8,6 +8,17 @@ jobs:
     name: without plugins
     runs-on: ubuntu-latest
     steps:
+      -
+        name: Fail if Dependabot
+        if: github.actor == 'dependabot[bot]'
+        run: |
+          cat <<EOF >&2
+          Frontend tests skipped because Dependabot can't access secrets.
+          Manually re-run the jobs to run the frontend tests.
+          For more information, see:
+          https://github.blog/changelog/2021-02-19-github-actions-workflows-triggered-by-dependabot-prs-will-run-with-read-only-permissions/
+          EOF
+          exit 1
       -
         name: Generate Sauce Labs strings
         id: sauce_strings
@@ -61,6 +72,17 @@ jobs:
     name: with plugins
     runs-on: ubuntu-latest
     steps:
+      -
+        name: Fail if Dependabot
+        if: github.actor == 'dependabot[bot]'
+        run: |
+          cat <<EOF >&2
+          Frontend tests skipped because Dependabot can't access secrets.
+          Manually re-run the jobs to run the frontend tests.
+          For more information, see:
+          https://github.blog/changelog/2021-02-19-github-actions-workflows-triggered-by-dependabot-prs-will-run-with-read-only-permissions/
+          EOF
+          exit 1
       -
         name: Generate Sauce Labs strings
         id: sauce_strings
diff --git a/src/bin/plugins/lib/frontend-tests.yml b/src/bin/plugins/lib/frontend-tests.yml
index f72483a59..6c2f33d08 100644
--- a/src/bin/plugins/lib/frontend-tests.yml
+++ b/src/bin/plugins/lib/frontend-tests.yml
@@ -9,6 +9,17 @@ jobs:
     runs-on: ubuntu-latest
 
     steps:
+      -
+        name: Fail if Dependabot
+        if: github.actor == 'dependabot[bot]'
+        run: |
+          cat <<EOF >&2
+          Frontend tests skipped because Dependabot can't access secrets.
+          Manually re-run the jobs to run the frontend tests.
+          For more information, see:
+          https://github.blog/changelog/2021-02-19-github-actions-workflows-triggered-by-dependabot-prs-will-run-with-read-only-permissions/
+          EOF
+          exit 1
       -
         name: Generate Sauce Labs strings
         id: sauce_strings