Chore [deps:github-actions]: Bump cypress-io/github-action from 6.7.8 to 6.7.12 #7988

	# Automatically approves pull requests if:
	# 1. The PR was opened by Dependabot
	# 2. The dependency's semantic versioning change is either minor or patch (not major)
	name: Dependabot auto-approve
	on: pull_request_target

	permissions:
	pull-requests: write
	contents: write

	jobs:
	dependabot:
	runs-on: ubuntu-latest
	if: ${{ github.actor == 'dependabot[bot]' }}
	steps:
	- name: Harden Runner
	uses: step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
	with:
	disable-sudo: true
	egress-policy: block
	allowed-endpoints: >
	api.github.com:443
	- name: Dependabot metadata
	id: dependabot-metadata
	uses: dependabot/fetch-metadata@d7267f607e9d3fb96fc2fbe83e0af444713e90b7 # v2.3.0
	- name: Approve a PR if dependency semver changes are minor or patch
	if: ${{ contains(fromJson('["version-update:semver-patch", "version-update:semver-minor"]'), steps.dependabot-metadata.outputs.update-type) }}
	run: gh pr review --approve "$PR_URL"
	env:
	PR_URL: ${{ github.event.pull_request.html_url }}
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	- name: Enable auto-merge if dependency semver changes are minor or patch
	if: ${{ contains(fromJson('["version-update:semver-patch", "version-update:semver-minor"]'), steps.dependabot-metadata.outputs.update-type) }}
	run: \|
	echo "Enabling auto-merge for Dependabot $UPDATE_TYPE"
	gh pr merge --auto --squash "$PR_URL"
	env:
	PR_URL: ${{ github.event.pull_request.html_url }}
	GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	UPDATE_TYPE: ${{ steps.dependabot-metadata.outputs.update-type }}

Provide feedback