diff --git a/.github/workflows/audit-branch-ci.yml b/.github/workflows/audit-branch-ci.yml index 14c31d01c6..8e879e5113 100644 --- a/.github/workflows/audit-branch-ci.yml +++ b/.github/workflows/audit-branch-ci.yml @@ -11,6 +11,7 @@ permissions: {} jobs: audit_branch_ci: name: Audit CI on Branches + if: github.repository == 'electron/electron' runs-on: ubuntu-latest permissions: contents: read diff --git a/.github/workflows/branch-created.yml b/.github/workflows/branch-created.yml index 43e091b950..a43463c9b8 100644 --- a/.github/workflows/branch-created.yml +++ b/.github/workflows/branch-created.yml @@ -14,7 +14,7 @@ permissions: {} jobs: release-branch-created: name: Release Branch Created - if: ${{ github.event_name == 'workflow_dispatch' || (github.event.ref_type == 'branch' && endsWith(github.event.ref, '-x-y') && !startsWith(github.event.ref, 'roller')) }} + if: ${{ github.repository == 'electron/electron' && (github.event_name == 'workflow_dispatch' || (github.event.ref_type == 'branch' && endsWith(github.event.ref, '-x-y') && !startsWith(github.event.ref, 'roller'))) }} permissions: contents: read pull-requests: write diff --git a/.github/workflows/build-git-cache.yml b/.github/workflows/build-git-cache.yml index b050b2e65a..0f92280c6d 100644 --- a/.github/workflows/build-git-cache.yml +++ b/.github/workflows/build-git-cache.yml @@ -10,6 +10,7 @@ permissions: {} jobs: build-git-cache-linux: + if: github.repository == 'electron/electron' runs-on: electron-arc-centralus-linux-amd64-32core permissions: contents: read @@ -33,6 +34,7 @@ jobs: target-platform: linux build-git-cache-windows: + if: github.repository == 'electron/electron' runs-on: electron-arc-centralus-linux-amd64-32core permissions: contents: read @@ -57,6 +59,7 @@ jobs: target-platform: win build-git-cache-macos: + if: github.repository == 'electron/electron' runs-on: electron-arc-centralus-linux-amd64-32core permissions: contents: read diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index f4081658cc..2ee7847b42 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -47,6 +47,7 @@ permissions: {} jobs: setup: + if: github.repository == 'electron/electron' runs-on: ubuntu-latest permissions: contents: read @@ -426,7 +427,7 @@ jobs: permissions: contents: read needs: [docs-only, macos-x64, macos-arm64, linux-x64, linux-x64-asan, linux-arm, linux-arm64, windows-x64, windows-x86, windows-arm64] - if: always() && !contains(needs.*.result, 'failure') + if: always() && github.repository == 'electron/electron' && !contains(needs.*.result, 'failure') steps: - name: GitHub Actions Jobs Done run: | diff --git a/.github/workflows/clean-src-cache.yml b/.github/workflows/clean-src-cache.yml index d632ba2d5f..c984b766b3 100644 --- a/.github/workflows/clean-src-cache.yml +++ b/.github/workflows/clean-src-cache.yml @@ -12,6 +12,7 @@ permissions: {} jobs: clean-src-cache: + if: github.repository == 'electron/electron' runs-on: electron-arc-centralus-linux-amd64-32core permissions: contents: read diff --git a/.github/workflows/linux-publish.yml b/.github/workflows/linux-publish.yml index ee15cca5e3..a8434e1375 100644 --- a/.github/workflows/linux-publish.yml +++ b/.github/workflows/linux-publish.yml @@ -21,6 +21,7 @@ permissions: {} jobs: checkout-linux: + if: github.repository == 'electron/electron' runs-on: electron-arc-centralus-linux-amd64-32core permissions: contents: read diff --git a/.github/workflows/macos-disk-cleanup.yml b/.github/workflows/macos-disk-cleanup.yml index a3a85beab8..217c446a48 100644 --- a/.github/workflows/macos-disk-cleanup.yml +++ b/.github/workflows/macos-disk-cleanup.yml @@ -13,6 +13,7 @@ permissions: {} jobs: macos-disk-cleanup: + if: github.repository == 'electron/electron' strategy: fail-fast: false matrix: diff --git a/.github/workflows/macos-publish.yml b/.github/workflows/macos-publish.yml index 7078d23ce3..22181d98a3 100644 --- a/.github/workflows/macos-publish.yml +++ b/.github/workflows/macos-publish.yml @@ -22,6 +22,7 @@ permissions: {} jobs: checkout-macos: + if: github.repository == 'electron/electron' runs-on: electron-arc-centralus-linux-amd64-32core permissions: contents: read diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml index 407a70d6d8..5c1aba9d25 100644 --- a/.github/workflows/scorecards.yml +++ b/.github/workflows/scorecards.yml @@ -13,6 +13,7 @@ permissions: read-all jobs: analysis: name: Scorecards analysis + if: github.repository == 'electron/electron' runs-on: ubuntu-latest permissions: # Needed to upload the results to code-scanning dashboard. diff --git a/.github/workflows/stable-prep-items.yml b/.github/workflows/stable-prep-items.yml index c649eba5af..8e9f03156f 100644 --- a/.github/workflows/stable-prep-items.yml +++ b/.github/workflows/stable-prep-items.yml @@ -10,6 +10,7 @@ permissions: {} jobs: check-stable-prep-items: name: Check Stable Prep Items + if: github.repository == 'electron/electron' runs-on: ubuntu-latest permissions: {} steps: diff --git a/.github/workflows/stale.yml b/.github/workflows/stale.yml index a4e4def4d3..9e899c78e7 100644 --- a/.github/workflows/stale.yml +++ b/.github/workflows/stale.yml @@ -9,6 +9,7 @@ permissions: {} jobs: stale: + if: github.repository == 'electron/electron' runs-on: ubuntu-latest permissions: {} steps: @@ -33,7 +34,7 @@ jobs: pending-repro: runs-on: ubuntu-latest permissions: {} - if: ${{ always() }} + if: ${{ always() && github.repository == 'electron/electron' }} needs: stale steps: - name: Generate GitHub App token diff --git a/.github/workflows/windows-publish.yml b/.github/workflows/windows-publish.yml index 74b87ac3ff..b761ac86b4 100644 --- a/.github/workflows/windows-publish.yml +++ b/.github/workflows/windows-publish.yml @@ -22,6 +22,7 @@ permissions: {} jobs: checkout-windows: + if: github.repository == 'electron/electron' runs-on: electron-arc-centralus-linux-amd64-32core permissions: contents: read