About workflow runs from private forks
If you rely on using forks of your private repositories, you can configure policies that control how users can run workflows on
pull_request events. Available to private and internal repositories only, you can configure these policy settings for enterprises, organizations, or repositories. For more information, see "Enforcing policies for GitHub Actions in your enterprise."
Approving workflow runs on a pull request from a private fork
Maintainers with write access to a repository can use the following procedure to review and run workflows on pull requests from contributors that require approval.
Under your repository name, click Pull requests.
In the list of pull requests, click the pull request you'd like to review.
On the pull request, click Files changed.
Inspect the proposed changes in the pull request and ensure that you are comfortable running your workflows on the pull request branch. You should be especially alert to any proposed changes in the
.github/workflows/directory that affect workflow files.
If you are comfortable with running workflows on the pull request branch, return to the Conversation tab, and under "Workflow(s) awaiting approval", click Approve and run.