From 0d36ad59f696d4ab00dae2ba8fd1ed62b7d4f8b6 Mon Sep 17 00:00:00 2001
From: Seena Fallah <seenafallah@gmail.com>
Date: Wed, 18 Feb 2026 16:40:03 +0100
Subject: [PATCH] dependabot: auto-merge requires on pull_request types

Auto-merge appears to function correctly with `pull_request` with types,
allowing it to authenticate and operate within the context of the target
repository. Without this, a 401 error is returned due to insufficient scope.

Signed-off-by: Seena Fallah <seenafallah@gmail.com>
---
 .../automating-dependabot-with-github-actions.md              | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/content/code-security/tutorials/secure-your-dependencies/automating-dependabot-with-github-actions.md b/content/code-security/tutorials/secure-your-dependencies/automating-dependabot-with-github-actions.md
index 1a165b93b82f..8ee5fec47724 100644
--- a/content/code-security/tutorials/secure-your-dependencies/automating-dependabot-with-github-actions.md
+++ b/content/code-security/tutorials/secure-your-dependencies/automating-dependabot-with-github-actions.md
@@ -159,7 +159,9 @@ You can instead use {% data variables.product.prodname_actions %} and the {% dat
 ```yaml copy
 {% data reusables.actions.actions-not-certified-by-github-comment %}
 name: Dependabot auto-merge
-on: pull_request
+on:
+  pull_request:
+    types: [opened, reopened, synchronize]
 
 permissions:
   contents: write