[4.2.x] Configured dangerous-triggers zizmor rule.

Backport of 846613e521 from main.
2026-02-09 02:49:25 +08:00 · 2025-11-14 14:06:21 -05:00
parent 6a80390740
commit b794e74129
2 changed files with 7 additions and 0 deletions
--- a/.github/workflows/new_contributor_pr.yml
+++ b/.github/workflows/new_contributor_pr.yml
@@ -3,12 +3,16 @@ name: New contributor message
 on:
  pull_request_target:
    types: [opened]
+    branches:
+      - main

 permissions:
  pull-requests: write

 jobs:
  build:
+    # Only trigger on the main Django repository
+    if: github.repository == 'django/django'
    name: Hello new contributor
    runs-on: ubuntu-latest
    steps:
--- a/zizmor.yml
+++ b/zizmor.yml
@@ -1,4 +1,7 @@
 rules:
+  dangerous-triggers:
+    ignore:
+      - new_contributor_pr.yml
  unpinned-uses:
    config:
      policies: