[StepSecurity] ci: Harden GitHub Actions #10663

	# assigns reviewers to pull requests in a similar way as CODEOWNERS, but doesn't require reviewers
	# to have write access to the repository
	# see .github/component_owners.yaml for the list of components and their owners
	name: Assign reviewers

	on:
	# pull_request_target is needed instead of just pull_request
	# because repository write permission is needed to assign reviewers
	pull_request_target:

	jobs:
	assign-reviewers:
	runs-on: ubuntu-latest
	steps:
	- uses: trask/component-owners@02dfde3c03025c064cc6961975e28a42e81c394a # main
	with:
	# this repository is using this action to request doc review
	assign-owners: false

Provide feedback