chore: disable workflows in forks

.github/workflows/release.yml

@@ -18,6 +18,7 @@ env:
 
 jobs:
   security-scan:
+    if: github.repository == 'zhom/donutbrowser'
     name: Security Vulnerability Scan
     uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@c5996e0193a3df57d695c1b8a1dec2a4c62e8730" # v2.3.3
     with:
@@ -33,6 +34,7 @@ jobs:
       actions: read
 
   lint-js:
+    if: github.repository == 'zhom/donutbrowser'
     name: Lint JavaScript/TypeScript
     uses: ./.github/workflows/lint-js.yml
     secrets: inherit
@@ -40,6 +42,7 @@ jobs:
       contents: read
 
   lint-rust:
+    if: github.repository == 'zhom/donutbrowser'
     name: Lint Rust
     uses: ./.github/workflows/lint-rs.yml
     secrets: inherit
@@ -47,6 +50,7 @@ jobs:
       contents: read
 
   codeql:
+    if: github.repository == 'zhom/donutbrowser'
     name: CodeQL
     uses: ./.github/workflows/codeql.yml
     secrets: inherit
@@ -57,6 +61,7 @@ jobs:
       actions: read
 
   spellcheck:
+    if: github.repository == 'zhom/donutbrowser'
     name: Spell Check
     uses: ./.github/workflows/spellcheck.yml
     secrets: inherit
@@ -64,6 +69,7 @@ jobs:
       contents: read
 
   release:
+    if: github.repository == 'zhom/donutbrowser'
     needs: [security-scan, lint-js, lint-rust, codeql, spellcheck]
     permissions:
       contents: write
@@ -232,6 +238,7 @@ jobs:
 #          commit_message: "docs: update CHANGELOG.md for ${{ github.ref_name }} [skip ci]"
 
   publish-repos:
+    if: github.repository == 'zhom/donutbrowser'
     needs: [release]
     runs-on: ubuntu-latest
     permissions: