From 7fba77dfe667844693b7f07b74de36c03af4107a Mon Sep 17 00:00:00 2001
From: "James M. Greene" <JamesMGreene@github.com>
Date: Fri, 8 Oct 2021 10:00:33 -0500
Subject: [PATCH] Use pull_request_target for better security with forked PRs
 (#22024)

---
 .github/workflows/automerge-dependencies.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/automerge-dependencies.yml b/.github/workflows/automerge-dependencies.yml
index 121fcc19be..7a15b9aaf9 100644
--- a/.github/workflows/automerge-dependencies.yml
+++ b/.github/workflows/automerge-dependencies.yml
@@ -9,7 +9,7 @@ name: Auto Merge Dependency Updates
 # **Who does it impact**: It helps docs engineering focus on higher value work.
 
 on:
-  pull_request:
+  pull_request_target:
     paths:
       - 'package*.json'
       - 'Gemfile*'