graphql-hive · ardatan · May 5, 2026 · May 5, 2026 · May 5, 2026 · May 5, 2026
diff --git a/.github/workflows/dependabot-bun-lockfile.yml b/.github/workflows/dependabot-bun-lockfile.yml
@@ -0,0 +1,37 @@
+name: dependabot-bun-lockfile
+
+on:
+  pull_request:
+    branches:
+      - main
+
+jobs:
+  update-lockfile:
+    if: ${{ github.actor == 'dependabot[bot]' }}
+    runs-on: ubuntu-24.04
+    permissions:
+      contents: write
+    steps:
+      - name: checkout
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+        with:
+          ref: ${{ github.head_ref }}
+          token: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: setup bun
+        uses: oven-sh/setup-bun@v2
+
+      - name: update lockfile
+        run: bun install
+
+      - name: commit lockfile if changed
+        run: |
+          if git diff --quiet bun.lock; then
+            echo "bun.lock is already up to date"
+          else
+            git config user.name "github-actions[bot]"
+            git config user.email "41898282+github-actions[bot]@users.noreply.github.com"
+            git add bun.lock
+            git commit -m "chore: update bun.lock"
+            git push
+          fi