ip-addresses/.github/workflows/dependency-review.yaml at 675a63d1577a05cc1e2056c40ca8a5900e7f5a98 · mesour/ip-addresses · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
name: "Dependency Review"

on:
  pull_request_target:
    types: [ "opened", "synchronize", "edited", "reopened" ]
    paths:
      - "*"
      - ".github/**"
  push:
    branches:
      - "**"
    paths:
      - "*"
      - ".github/**"

concurrency:
  group: "${{ github.workflow }}-${{ github.ref }}"
  cancel-in-progress: true

permissions:
  contents: "read"
  pull-requests: "write"

jobs:
  dependency-review:
    name: "Dependency Review"
    runs-on: "ubuntu-latest"

    steps:
      - name: "Checkout"
        uses: "actions/checkout@v4"

      - name: "Dependency Review"
        uses: "actions/dependency-review-action@v4"
        with:
          base-ref: "${{ github.event_name == 'push' && github.event.before || '' }}"
          head-ref: "${{ github.event_name == 'push' && github.sha || '' }}"
          comment-summary-in-pr: "always"
          fail-on-severity: "high"
          show-openssf-scorecard: false