usage of branches or branches-ignore breaks workflow

[jeffvg]

Hi all,
I've been using PR-labeler for a over a year and works great. Since we started using the dependabot dependency update workflow and the security dependabot. The dependabot PR fails to run the PR labeler due to permissions. How can the current pr-labeler-action@v4 be configured to ignore dependabot PR's all together and not fail the job?

I've tried both these configs

name: PR Labeler
on:
  pull_request:
    types: [opened]
    branches:
      - '!dependabot/*'  //using not dependabot

permissions:
  contents: read

jobs:
  pr-labeler:
    permissions:
      contents: read
      pull-requests: write
    runs-on: ubuntu-latest
    steps:
      - uses: TimonVS/pr-labeler-action@v4
        with:
          repo-token: ${{ secrets.GITHUB_TOKEN }}
          configuration-path: .github/pr-labeler.yml

name: PR Labeler
on:
  pull_request:
    types: [opened]
    branches-ignore:  //using branches-ignore
      - 'dependabot/*'

permissions:
  contents: read

jobs:
  pr-labeler:
    permissions:
      contents: read
      pull-requests: write
    runs-on: ubuntu-latest
    steps:
      - uses: TimonVS/pr-labeler-action@v4
        with:
          repo-token: ${{ secrets.GITHUB_TOKEN }}
          configuration-path: .github/pr-labeler.yml

• error
  

thank you

[jamesrenaud]

@jeffvg are you still experiencing this issue?

I wasn't able to reproduce this, and the error seems to sound like a syntax problem.

[jamesrenaud]

Ah, this may also be because GitHub treats Dependabot PRs as Forks instead of actual PRs

https://github.blog/changelog/2021-02-19-github-actions-workflows-triggered-by-dependabot-prs-will-run-with-read-only-permissions/