fix: add workflow_dispatch trigger to dependabot-rebase workflow

[don-petry]

Adds workflow_dispatch to allow manual triggering of the Dependabot rebase workflow to flush the PR queue after batch updates. See petry-projects/.github#139

Summary by CodeRabbit

• Chores
  • Enhanced CI/CD automation to support manual workflow triggers in addition to automatic scheduling.

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[Copilot]

Pull request overview

Adds a manual trigger to the repo’s Dependabot rebase workflow so maintainers can run the org reusable workflow on-demand (e.g., after Dependabot batch updates) without needing a push to main.

Changes:

• Add workflow_dispatch trigger to .github/workflows/dependabot-rebase.yml for manual execution.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

This stub explicitly documents that the trigger event must not be changed (see header “AGENTS — READ BEFORE EDITING”). Adding workflow_dispatch here will cause this repo to drift from the org “source of truth” workflow and may be overwritten the next time the stub is re-synced. Please make this change in petry-projects/.github/standards/workflows/dependabot-rebase.yml (and/or the reusable workflow) and then re-adopt the updated stub/version here, rather than customizing the local copy.

Suggested change

workflow_dispatch: # allow manual trigger to flush Dependabot PR queue

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

Run ID: fde06988-0507-41b9-8e60-64b1aecb62d7

📥 Commits

Reviewing files that changed from the base of the PR and between 256f909 and bed43bf.

📒 Files selected for processing (1)

• .github/workflows/dependabot-rebase.yml

---

📝 Walkthrough

Walkthrough

A workflow_dispatch trigger has been added to the Dependabot rebase workflow configuration, enabling manual execution of the workflow in addition to the existing automatic trigger on push events to the main branch.

Changes

Cohort / File(s)	Summary
GitHub Workflow Configuration .github/workflows/dependabot-rebase.yml	Added workflow_dispatch trigger to enable manual workflow runs alongside the existing push trigger on main.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately describes the main change: adding a workflow_dispatch trigger to the dependabot-rebase workflow, which is the primary modification in this PR.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch feat/dependabot-rebase-dispatch

Warning

Review ran into problems

🔥 Problems

Git: Failed to clone repository. Please run the @coderabbitai full review command to re-trigger a full review. If the issue persists, set path_filters to include or exclude specific files.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[don-petry]

Automated review — APPROVED

Risk: LOW
Reviewed commit: bed43bf25f9c66bec097f6eda619439445ad51ba
Cascade: triage → deep (see triage: haiku 4.5 → deep: sonnet 4.6 + duck: gpt-5.4 → audit: opus 4.6 for models)

Note: Formal approval posted as comment — GitHub does not allow a PR author to approve their own PR.

Summary

This PR adds a bare workflow_dispatch trigger (no inputs) to the Dependabot rebase workflow, enabling maintainers to manually flush the PR queue. The change is a 2-line addition with zero security impact — no new permissions, no external actors, no injectable inputs — and all CI checks (CodeQL, SonarCloud, AgentShield, dependency audit) pass with clean results.

Findings

Info

• .github/workflows/dependabot-rebase.yml:31 — workflow_dispatch added without inputs block, which is safe. Manual triggers are restricted to users with write access to the repository; no external actor can trigger this workflow.
• (no file) — All CI checks passed: CodeQL (actions + python), SonarCloud (0 new issues, 0 security hotspots), AgentShield, dependency audit, and CodeRabbit reported no actionable comments.

CI status

All CI checks passed: CodeQL (actions + python), SonarCloud (0 new issues, 0 security hotspots), AgentShield, dependency audit.

---

Reviewed by the don-petry PR-review cascade (triage: haiku 4.5 → deep: sonnet 4.6 + duck: gpt-5.4 → audit: opus 4.6). Reply with @don-petry if you need a human.

[don-petry]

Superseded by # which adopts the full standard verbatim including workflow_dispatch and the corrected SHA.