All workflows are disabled for forks. It would be nice if in the GitHub repository's settings, a fork could specify which Spring Security workflows it would like to enable.
One way to do this would be to change the workflows to look up the RUN_JOBS environment variable as a secret, though there may be other ways, too.