A better security-wise style bot GH Action (#2914)
* better security-wise gh action
* run workflow manually
* nit
* fix
* Add credits comment
* make pr_number required
* remove file protected checking
* fix
* add timestamp, remove manual trigger and allow write access
* checkout PR branch again
* review suggestions
