fix: CI pipeline security scan and release job configuration

byerlikaya · byerlikaya · commit 14d365dcc9df · 2025-08-21T02:13:51.000+03:00
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -146,7 +146,7 @@ jobs:
     name: Create GitHub Release
     runs-on: ubuntu-latest
     needs: [build, publish-nuget]
-    if: github.ref == 'refs/heads/main'
+    if: github.ref == 'refs/heads/main' && contains(github.event.head_commit.message, '[release]')
     permissions:
       contents: write
       packages: read
@@ -268,6 +268,9 @@ jobs:
       with:
         dotnet-version: ${{ env.DOTNET_VERSION }}
         
+    - name: Restore dependencies
+      run: dotnet restore
+        
     - name: Run security scan
       run: |
         dotnet list package --vulnerable
