headlamp-argocd-plugin/.github/workflows/dual-approval.yaml

name: Promotion Gate

# Calls the shared promotion gate workflow.
# dev PRs: no gate (engineer self-merges).
# uat PRs: QA approval required.
# main PRs: UAT approval required (uat→main promotions).

on:
  pull_request_review:
    types: [submitted, dismissed]
  pull_request:
    branches: [uat, main]
    types: [opened, reopened, synchronize]

jobs:
  promotion-gate:
    uses: privilegedescalation/.github/.github/workflows/dual-approval-check.yaml@main
    secrets: inherit
    with:
      pr_number: ${{ github.event.pull_request.number }}