.github/workflows/cherry-picker.yml - bazel - Git at Google

 name: cherry-picker

 on:
   pull_request_target:
     types: [closed]
     branches: [master]
   issues:
     types: [closed, milestoned]

 permissions:
   contents: read

 env:
   GH_TOKEN: ${{ secrets.BAZEL_IO_TOKEN }}

 jobs:
   cherry-picker-on-closed:
     if: github.event.action == 'closed' && github.event.sender.login == 'copybara-service[bot]'
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
         uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a
         with:
           egress-policy: audit
       - if: github.event.pull_request
         name: Run cherrypicker on closed PR
         uses: bazelbuild/continuous-integration/actions/cherry_picker@cc02676a9a261d74c8fa33963d440b65c67eec19
         with:
           triggered-on: closed
           pr-number: ${{ github.event.number }}
           is-prod: True
       - if: github.event.issue
         name: Run cherrypicker on closed issue
         uses: bazelbuild/continuous-integration/actions/cherry_picker@cc02676a9a261d74c8fa33963d440b65c67eec19
         with:
           triggered-on: closed
           pr-number: ${{ github.event.issue.number }}
           is-prod: True
   cherry-picker-on-milestoned:
     if: github.event.action == 'milestoned'
     runs-on: ubuntu-latest
     steps:
       - name: Harden Runner
         uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a
         with:
           egress-policy: audit
       - if: startsWith(github.event.issue.body, 'Forked from')
         name: Run cherrypicker on comment
         uses: bazelbuild/continuous-integration/actions/cherry_picker@cc02676a9a261d74c8fa33963d440b65c67eec19
         with:
           triggered-on: commented
           pr-number: ${{ github.event.issue.body }}
           milestone-title: ${{ github.event.milestone.title }}
           milestoned-issue-number: ${{ github.event.issue.number }}
           is-prod: True
       - if: startsWith(github.event.issue.body, '### Commit IDs')
         name: Run cherrypicker on demand
         uses: bazelbuild/continuous-integration/actions/cherry_picker@cc02676a9a261d74c8fa33963d440b65c67eec19
         with:
           triggered-on: ondemand
           milestone-title: ${{ github.event.milestone.title }}
           milestoned-issue-number: ${{ github.event.issue.number }}
           issue-title: ${{ github.event.issue.title }}
           issue-body: ${{ github.event.issue.body }}
           is-prod: True
	name: cherry-picker

	on:
	pull_request_target:
	types: [closed]
	branches: [master]
	issues:
	types: [closed, milestoned]

	permissions:
	contents: read

	env:
	GH_TOKEN: ${{ secrets.BAZEL_IO_TOKEN }}

	jobs:
	cherry-picker-on-closed:
	if: github.event.action == 'closed' && github.event.sender.login == 'copybara-service[bot]'
	runs-on: ubuntu-latest
	steps:
	- name: Harden Runner
	uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a
	with:
	egress-policy: audit
	- if: github.event.pull_request
	name: Run cherrypicker on closed PR
	uses: bazelbuild/continuous-integration/actions/cherry_picker@cc02676a9a261d74c8fa33963d440b65c67eec19
	with:
	triggered-on: closed
	pr-number: ${{ github.event.number }}
	is-prod: True
	- if: github.event.issue
	name: Run cherrypicker on closed issue
	uses: bazelbuild/continuous-integration/actions/cherry_picker@cc02676a9a261d74c8fa33963d440b65c67eec19
	with:
	triggered-on: closed
	pr-number: ${{ github.event.issue.number }}
	is-prod: True
	cherry-picker-on-milestoned:
	if: github.event.action == 'milestoned'
	runs-on: ubuntu-latest
	steps:
	- name: Harden Runner
	uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a
	with:
	egress-policy: audit
	- if: startsWith(github.event.issue.body, 'Forked from')
	name: Run cherrypicker on comment
	uses: bazelbuild/continuous-integration/actions/cherry_picker@cc02676a9a261d74c8fa33963d440b65c67eec19
	with:
	triggered-on: commented
	pr-number: ${{ github.event.issue.body }}
	milestone-title: ${{ github.event.milestone.title }}
	milestoned-issue-number: ${{ github.event.issue.number }}
	is-prod: True
	- if: startsWith(github.event.issue.body, '### Commit IDs')
	name: Run cherrypicker on demand
	uses: bazelbuild/continuous-integration/actions/cherry_picker@cc02676a9a261d74c8fa33963d440b65c67eec19
	with:
	triggered-on: ondemand
	milestone-title: ${{ github.event.milestone.title }}
	milestoned-issue-number: ${{ github.event.issue.number }}
	issue-title: ${{ github.event.issue.title }}
	issue-body: ${{ github.event.issue.body }}
	is-prod: True