Bump yaml from 2.7.1 to 2.8.0 #35

	name: 'Dependency Review'
	on: [pull_request]

	permissions:
	contents: read

	jobs:
	dependency-review:
	runs-on: ubuntu-latest
	steps:
	- name: Harden the runner (Audit all outbound calls)
	uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
	with:
	egress-policy: audit

	- name: 'Checkout Repository'
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	- name: 'Dependency Review'
	uses: actions/dependency-review-action@38ecb5b593bf0eb19e335c03f97670f792489a8b # v4.7.0

Provide feedback