kevinjqliu opened a new pull request, #3204:
URL: https://github.com/apache/iceberg-python/pull/3204
<!--
Thanks for opening a pull request!
-->
<!-- In the case this PR will resolve an issue, please replace
${GITHUB_ISSUE_ID} below with the actual Github issue id. -->
<!-- Closes #${GITHUB_ISSUE_ID} -->
# Rationale for this change
Relates to https://github.com/apache/iceberg/issues/15742
This PR
- Add "ASF allowlist check"
- Add back Github Action auto-update for dependabot (reverts #3187)
- Add cooldown to dependabot (zizmor recommended)
- Pin commit for codeql.yml (zizmor recommended)
We can add back dependabot for github action because the "ASF allowlist
check" will now alert when an action is not allowed (failures will no longer be
silent)
## Are these changes tested?
Yes
## Are there any user-facing changes?
<!-- In the case of user-facing changes, please add the changelog label. -->
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
