Skip to content

Fix workflow trigger for Python package version check #432

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
vcschapp merged 1 commit into from
Jan 30, 2026
Merged

Fix workflow trigger for Python package version check #432

vcschapp merged 1 commit into from
Jan 30, 2026

Conversation

@vcschapp
Copy link
Collaborator

@vcschapp vcschapp commented Jan 30, 2026

Description

This change switches the trigger for the Python package version check GitHub Actions workflow from pull_request_target to pull_request. This should result in the paths filter on the workflow working correctly.

Because pull_request_target runs against the base and doesn't work with paths, it's doesn't work for the intended use case. It is more targeted toward protecting workflows from rogue PRs from forks. Such protection isn't needed for this workflow because it doesn't use any secrets, apart from ephemeral ones generated through OIDC flows, and in any event it's protected from fork runs by the if check in check-python-package-versions.yaml on line 11.

Testing

Ongoing, via PR #430.

@vcschapp
Fix workflow trigger for Python package version check
9c8b5c0 
`pull_request_target` runs against the base and doesn't work with paths,
so it's wrong. It is more targeted toward protecting workflows from
rogue PRs from forks.

This isn't an issue for this workflow because it doesn't use any
secrets, apart from ephemeral ones generated through OIDC flows, and
in any event it's protected from fork runs by the `if` check in
`check-python-package-versions.yaml` on line 11.
@vcschapp vcschapp added the change type - cosmetic 🌹 Cosmetic change label Jan 30, 2026
@vcschapp vcschapp mentioned this pull request Jan 30, 2026
Closed
@RoelBollens-TomTom RoelBollens-TomTom self-requested a review January 30, 2026 21:01
@vcschapp vcschapp merged commit df4cc38 into dev Jan 30, 2026
2 of 3 checks passed
@vcschapp vcschapp deleted the pypi-publish-check-versions-fix-1 branch January 30, 2026 22:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mojodna mojodna mojodna approved these changes

@RoelBollens-TomTom RoelBollens-TomTom RoelBollens-TomTom approved these changes

@jwass jwass Awaiting requested review from jwass

@jenningsanderson jenningsanderson Awaiting requested review from jenningsanderson

@sasastanojkov sasastanojkov Awaiting requested review from sasastanojkov

Assignees

No one assigned

Labels

change type - cosmetic 🌹 Cosmetic change

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@vcschapp @mojodna @RoelBollens-TomTom