chore: Replace pull_request_target with pull_request in PR title validation (#377)

erezrokah · web-flow · commit 146bb005d41e · 2026-03-25T14:42:01.000Z
Replace `pull_request_target` with `pull_request` to reduce attack surface. The semantic PR title action only reads the event payload, so elevated permissions are not needed.
diff --git a/.github/workflows/pr_title.yml b/.github/workflows/pr_title.yml
@@ -1,7 +1,7 @@
 name: "Validate PR title"
 
 on:
-  pull_request_target:
+  pull_request:
     types:
       - opened
       - edited
