From 9e29706b9bb87cae05297a953ea26b741f61b99f Mon Sep 17 00:00:00 2001
From: Nish Sinha <nishnha@github.com>
Date: Mon, 26 Aug 2024 17:49:24 -0400
Subject: [PATCH] pull_request_target -> pull_request

---
 README.md | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/README.md b/README.md
index b575475..b844e0c 100644
--- a/README.md
+++ b/README.md
@@ -19,7 +19,7 @@ Create a workflow file that contains a step that uses: `dependabot/fetch-metadat
 ```yaml
 -- .github/workflows/dependabot-prs.yml
 name: Dependabot Pull Request
-on: pull_request_target
+on: pull_request
 if: github.event.pull_request.user.login == 'dependabot[bot]' && github.repository == 'owner/my_repo'
 jobs:
   build:
@@ -103,7 +103,7 @@ have a permissive auto-approval on all Dependabot PRs like so:
 
 ```yaml
 name: Dependabot auto-approve
-on: pull_request_target
+on: pull_request
 permissions:
   pull-requests: write
 jobs:
@@ -137,7 +137,7 @@ For example, if you want to automatically merge all patch updates to Rails:
 
 ```yaml
 name: Dependabot auto-merge
-on: pull_request_target
+on: pull_request
 permissions:
   pull-requests: write
   contents: write
@@ -165,7 +165,7 @@ For example, if you want to flag all production dependency updates with a label:
 
 ```yaml
 name: Dependabot auto-label
-on: pull_request_target
+on: pull_request
 permissions:
   pull-requests: write
   issues: write