Skip to content

Bump @tailwindcss/vite from 4.3.0 to 4.3.1 #28

Bump @tailwindcss/vite from 4.3.0 to 4.3.1

Bump @tailwindcss/vite from 4.3.0 to 4.3.1 #28

name: Dependabot auto-merge
on: pull_request_target
# The minted App token (below) performs the writes; the default token only reads.
permissions:
contents: read
jobs:
dependabot:
runs-on: ubuntu-latest
if: ${{ github.actor == 'dependabot[bot]' }}
steps:
- name: Create GitHub App token
id: app-token
uses: actions/create-github-app-token@v3
with:
client-id: ${{ secrets.MERGE_APP_ID }}
private-key: ${{ secrets.MERGE_APP_KEY }}
# Least privilege: scope the minted token to THIS repo, with only the
# permissions auto-merge needs — not the App's org-wide
# actions/issues write across all repositories.
owner: ${{ github.repository_owner }}
repositories: ${{ github.event.repository.name }}
permission-contents: write
permission-pull-requests: write
- name: Dependabot metadata
id: metadata
uses: dependabot/fetch-metadata@v3.1.0
with:
github-token: '${{ steps.app-token.outputs.token }}'
skip-commit-verification: true
- name: Approve PR + merge after required checks pass
if: ${{ steps.metadata.outputs.update-type != 'version-update:semver-major' }}
run: |
set -euo pipefail
review_decision=$(gh pr view "$PR_URL" --json reviewDecision -q .reviewDecision)
if [ "$review_decision" != "APPROVED" ]; then
gh pr review --approve "$PR_URL"
else
echo "PR already approved."
fi
echo "Waiting for required checks to complete successfully..."
gh pr checks "$PR_URL" --required --watch
echo "Required checks passed. Merging..."
gh pr merge --admin --squash "$PR_URL"
env:
PR_URL: ${{ github.event.pull_request.html_url }}
GITHUB_TOKEN: ${{ steps.app-token.outputs.token }}