ci: skip secret-required tests for dependabot PRs

.github/workflows/aws_v4.yml

@@ -60,12 +60,12 @@ jobs:
       - name: Check if secrets are available
         id: check
         run: |
-          if [[ "${{ github.event_name }}" == "push" || ( "${{ github.event_name }}" == "pull_request" && "${{ github.event.pull_request.head.repo.fork }}" == "false" ) ]]; then
+          if [[ "${{ github.event_name }}" == "push" || ( "${{ github.event_name }}" == "pull_request" && "${{ github.event.pull_request.head.repo.fork }}" == "false" && "${{ github.actor }}" != "dependabot[bot]" ) ]]; then
             echo "has_secrets=true" >> $GITHUB_OUTPUT
-            echo "::notice::Integration tests will be executed (base repository)"
+            echo "::notice::Integration tests will be executed (base repository and non-dependabot PR)"
           else
             echo "has_secrets=false" >> $GITHUB_OUTPUT
-            echo "::warning::Integration tests will be skipped (forked repository or no secrets available)"
+            echo "::warning::Integration tests will be skipped (forked repository, dependabot PR, or no secrets available)"
           fi
 
   # Signing tests - test signature algorithm with static credentials

.github/workflows/azure_storage.yml

@@ -60,12 +60,12 @@ jobs:
       - name: Check if secrets are available
         id: check
         run: |
-          if [[ "${{ github.event_name }}" == "push" || ( "${{ github.event_name }}" == "pull_request" && "${{ github.event.pull_request.head.repo.fork }}" == "false" ) ]]; then
+          if [[ "${{ github.event_name }}" == "push" || ( "${{ github.event_name }}" == "pull_request" && "${{ github.event.pull_request.head.repo.fork }}" == "false" && "${{ github.actor }}" != "dependabot[bot]" ) ]]; then
             echo "has_secrets=true" >> $GITHUB_OUTPUT
-            echo "::notice::Integration tests will be executed (base repository)"
+            echo "::notice::Integration tests will be executed (base repository and non-dependabot PR)"
           else
             echo "has_secrets=false" >> $GITHUB_OUTPUT
-            echo "::warning::Integration tests will be skipped (forked repository or no secrets available)"
+            echo "::warning::Integration tests will be skipped (forked repository, dependabot PR, or no secrets available)"
           fi
 
   # Signing tests - test signature algorithm with static credentials

.github/workflows/google.yml

@@ -60,12 +60,12 @@ jobs:
       - name: Check if secrets are available
         id: check
         run: |
-          if [[ "${{ github.event_name }}" == "push" || ( "${{ github.event_name }}" == "pull_request" && "${{ github.event.pull_request.head.repo.fork }}" == "false" ) ]]; then
+          if [[ "${{ github.event_name }}" == "push" || ( "${{ github.event_name }}" == "pull_request" && "${{ github.event.pull_request.head.repo.fork }}" == "false" && "${{ github.actor }}" != "dependabot[bot]" ) ]]; then
             echo "has_secrets=true" >> $GITHUB_OUTPUT
-            echo "::notice::Integration tests will be executed (base repository)"
+            echo "::notice::Integration tests will be executed (base repository and non-dependabot PR)"
           else
             echo "has_secrets=false" >> $GITHUB_OUTPUT
-            echo "::warning::Integration tests will be skipped (forked repository or no secrets available)"
+            echo "::warning::Integration tests will be skipped (forked repository, dependabot PR, or no secrets available)"
           fi
 
   # Signing tests - test signature algorithm with static credentials

.github/workflows/tencent_cos.yml

@@ -55,7 +55,7 @@ jobs:
     permissions:
       contents: "read"
       id-token: "write"
-    if: github.event_name == 'push' || !github.event.pull_request.head.repo.fork
+    if: github.event_name == 'push' || (!github.event.pull_request.head.repo.fork && github.actor != 'dependabot[bot]')
     steps:
       - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
         with: