fix(security): replace pull_request_target with pull_request trigger …

fix(security): replace pull_request_target with pull_request trigger … #578