fetch-metadata/.github/workflows/dependabot-auto-merge.yml

name: Dependabot auto-merge
on: pull_request_target

jobs:
  dependabot:
    runs-on: ubuntu-latest

    if: ${{ github.event.pull_request.user.login == 'dependabot[bot]' }}
    steps:
      - name: Generate token
        id: generate_token
        uses: actions/create-github-app-token@29824e69f54612133e76f7eaac726eef6c875baf # v2.2.1
        with:
          app-id: ${{ secrets.FETCH_METADATA_ACTION_AUTOMATION_APP_ID }}
          private-key: ${{ secrets.FETCH_METADATA_ACTION_AUTOMATION_PRIVATE_KEY }}

      - uses: actions/checkout@v6

      - name: Auto-merge
        run: gh pr merge --auto --merge '${{ github.event.pull_request.html_url }}'
        env:
          GITHUB_TOKEN: ${{ steps.generate_token.outputs.token }}