From f9b9731ea3c6202e8d22c245cf68d555dace707e Mon Sep 17 00:00:00 2001
From: Chris Hopkins <chris.hopkins@madetech.com>
Date: Fri, 17 Apr 2026 09:20:19 +0100
Subject: [PATCH] fix: don't run the dependency review action for a dependabot
 PR

Signed-off-by: DBT pre-commit check
---
 .github/workflows/org.python-ci.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/org.python-ci.yml b/.github/workflows/org.python-ci.yml
index d1f321b0..698c45be 100644
--- a/.github/workflows/org.python-ci.yml
+++ b/.github/workflows/org.python-ci.yml
@@ -57,6 +57,8 @@ jobs:
           sarif_file: ${{env.results-file}}
 
   dependency-review:
+    # This job will fail on a push as it needs to do a diff as part of a PR
+    if: ${{ github.event_name == 'pull_request' }}
     permissions:
       pull-requests: write
       contents: read