From 70737b6fd447b62b62332ed2d6ebb9d44cd6675d Mon Sep 17 00:00:00 2001
From: Naveen Singh <36371707+naveensingh@users.noreply.github.com>
Date: Sat, 27 Jan 2024 20:59:38 +0530
Subject: [PATCH] Update image-minimizer.yml

---
 .github/workflows/image-minimizer.yml | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/image-minimizer.yml b/.github/workflows/image-minimizer.yml
index 3a7aaf6d..6546b9b0 100644
--- a/.github/workflows/image-minimizer.yml
+++ b/.github/workflows/image-minimizer.yml
@@ -1,3 +1,6 @@
+# This workflow has write permissions on the repo
+# It MUST NOT check out a PR and run untrusted code
+ 
 name: Image Minimizer
 
 on:
@@ -5,7 +8,7 @@ on:
     types: [created, edited]
   issues:
     types: [opened, edited]
-  pull_request:
+  pull_request_target:
     types: [opened, edited]
 
 permissions:
@@ -19,8 +22,6 @@ jobs:
       pull-requests: write
 
     steps:
-      - uses: actions/checkout@v3
-
       - uses: actions/setup-node@v3
         with:
           node-version: 16