validate dependabot configuration

Borrowed from Ubuntu (ubuntu/authd@3f9df8f) Sadly, this won't check our existing config unless I make a dummy update.
geekosaur · Aug 22, 2024 · 6ae935b · 6ae935b
1 parent fb2ac8c
commit 6ae935b
Show file tree

Hide file tree

Showing 2 changed files with 27 additions and 0 deletions.
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -13,3 +13,4 @@ updates:
     schedule:
       # Check for updates to GitHub Actions every week
       interval: "weekly"
+
diff --git a/.github/workflows/dependabot.yml b/.github/workflows/dependabot.yml
@@ -0,0 +1,26 @@
+# copied from https://github.com/ubuntu/authd/commit/3f9df8f21d952cd33fd44d3834d0edeec1f5766f
+
+name: Dependabot rules validation
+
+permissions:
+  pull-requests: write
+
+on:
+  pull_request:
+    paths:
+      - '.github/dependabot.yml'
+
+jobs:
+  validate:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: marocchino/validate-dependabot@v3
+        id: validate
+
+      - uses: marocchino/sticky-pull-request-comment@v2
+        if: always()
+        with:
+          header: validate-dependabot
+          message: ${{ steps.validate.outputs.markdown }}
Original file line number	Diff line number	Diff line change
Expand Up		@@ -13,3 +13,4 @@ updates:
		schedule:
		# Check for updates to GitHub Actions every week
		interval: "weekly"