From 5af40c24044f2be36d95bb4f4c74e4806ec91fae Mon Sep 17 00:00:00 2001
From: machine424 <ayoubmrini424@gmail.com>
Date: Wed, 17 Sep 2025 09:35:59 +0200
Subject: [PATCH] chore(workflows/check_release_notes): do not run on
 dependabot PRs and only run against main

Signed-off-by: machine424 <ayoubmrini424@gmail.com>
---
 .github/workflows/check_release_notes.yml | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/check_release_notes.yml b/.github/workflows/check_release_notes.yml
index 5b191c804a..b8381aff07 100644
--- a/.github/workflows/check_release_notes.yml
+++ b/.github/workflows/check_release_notes.yml
@@ -1,6 +1,8 @@
 name: 'Check release notes'
 on:
   pull_request:
+    branches:
+      - main
     types:
       - opened
       - reopened
@@ -14,7 +16,9 @@ jobs:
   check_release_notes:
     name: check
     runs-on: ubuntu-latest
-    if: github.repository_owner == 'prometheus' || github.repository_owner == 'prometheus-community' # Don't run this workflow on forks.
+    # Don't run this workflow on forks.
+    # Don't run it on dependabot PRs either as humans would take control in case a bump introduces a breaking change.
+    if: (github.repository_owner == 'prometheus' || github.repository_owner == 'prometheus-community') && github.event.pull_request.user.login != 'dependabot[bot]'
     steps:
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       - env: