fix: enable supply-chain-pr workflow for direct push and pr events

Updated the job-level if condition in the Supply Chain Verification (PR) workflow to explicitly allow execution on push and pull_request events.

Previously, the condition only permitted workflow_dispatch or workflow_run events, causing the workflow to skip despite being triggered by pushes or PRs.
This change ensures the verification runs immediately when code is pushed or a PR is opened, as intended by the workflow's trigger configuration.

.github/workflows/supply-chain-pr.yml

@@ -35,10 +35,13 @@ jobs:
     name: Verify Supply Chain
     runs-on: ubuntu-latest
     timeout-minutes: 15
-    # Run for: manual dispatch, PR builds, or any push builds from docker-build
+    # Run for: manual dispatch, direct push/PR, or successful workflow_run triggered by push/PR
     if: >
       github.event_name == 'workflow_dispatch' ||
-      ((github.event.workflow_run.event == 'pull_request' || github.event.workflow_run.event == 'push') &&
+      github.event_name == 'push' ||
+      github.event_name == 'pull_request' ||
+      (github.event_name == 'workflow_run' &&
+       (github.event.workflow_run.event == 'pull_request' || github.event.workflow_run.event == 'push') &&
        github.event.workflow_run.conclusion == 'success')
 
     steps: