From cb3a8e825608e4fbefe56defb0f9802f7b516e00 Mon Sep 17 00:00:00 2001
From: Robert Waffen <rwaffen@gmail.com>
Date: Wed, 28 Aug 2024 09:13:30 +0200
Subject: [PATCH] fix: reveert to on-pull-request and disable cve scanning for
 the moment

Signed-off-by: Robert Waffen <rwaffen@gmail.com>
---
 .github/workflows/ci.yaml | 58 ++++++++++++++++++++-------------------
 1 file changed, 30 insertions(+), 28 deletions(-)

diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
index c2ab8067..fd07a297 100644
--- a/.github/workflows/ci.yaml
+++ b/.github/workflows/ci.yaml
@@ -2,7 +2,9 @@
 name: CI🚦
 
 on:
-  pull_request_target:
+  pull_request:
+    branches:
+      - main
   workflow_dispatch:
 
 jobs:
@@ -49,36 +51,36 @@ jobs:
             R10K_VERSION=${{ matrix.r10k_version }}
             RUGGED_VERSION=${{ matrix.rugged_version }}
 
-      - name: Login to Docker Hub
-        uses: docker/login-action@v3
-        with:
-          username: voxpupulibot
-          password: ${{ secrets.DOCKERHUB_BOT_RO_PASSWORD }}
+      # - name: Login to Docker Hub
+      #   uses: docker/login-action@v3
+      #   with:
+      #     username: voxpupulibot
+      #     password: ${{ secrets.DOCKERHUB_BOT_RO_PASSWORD }}
 
-      - name: Analyze container image for CVEs
-        id: analyze-image-cves
-        uses: docker/scout-action@v1
-        with:
-          command: cves
-          image: 'local://ci/puppetserver:${{ matrix.version }}'
-          sarif-file: sarif.output.${{ matrix.version }}.${{ github.sha }}.json
-          write-comment: false
+      # - name: Analyze container image for CVEs
+      #   id: analyze-image-cves
+      #   uses: docker/scout-action@v1
+      #   with:
+      #     command: cves
+      #     image: 'local://ci/puppetserver:${{ matrix.version }}'
+      #     sarif-file: sarif.output.${{ matrix.version }}.${{ github.sha }}.json
+      #     write-comment: false
 
-      - name: Compare container image to latest from Registry
-        id: compare-image
-        uses: docker/scout-action@v1
-        with:
-          command: compare
-          image: 'local://ci/puppetserver:${{ matrix.version }}'
-          to: 'ghcr.io/voxpupuli/puppetserver:${{ matrix.version }}-latest'
-          summary: true
-          keep-previous-comments: true
+      # - name: Compare container image to latest from Registry
+      #   id: compare-image
+      #   uses: docker/scout-action@v1
+      #   with:
+      #     command: compare
+      #     image: 'local://ci/puppetserver:${{ matrix.version }}'
+      #     to: 'ghcr.io/voxpupuli/puppetserver:${{ matrix.version }}-latest'
+      #     summary: true
+      #     keep-previous-comments: true
 
-      - name: Upload SARIF result
-        id: upload-sarif
-        uses: github/codeql-action/upload-sarif@v3
-        with:
-          sarif_file: sarif.output.${{ matrix.version }}.${{ github.sha }}.json
+      # - name: Upload SARIF result
+      #   id: upload-sarif
+      #   uses: github/codeql-action/upload-sarif@v3
+      #   with:
+      #     sarif_file: sarif.output.${{ matrix.version }}.${{ github.sha }}.json
 
   tests:
     needs: