actions/dependency-review-action
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
2bedf4a221c94de43894e690e432b09913640d67
dependency-review-action/__tests__
History
Kevin Dangoor 6e9307a3d4 Discard allow list entries that are not SPDX IDs 
The allow-licenses list is expected (and documented) to be a list of
SPDX license IDs (LicenseRefs are also valid). If someone puts an
expression in the list (e.g. "GPL-3.0-only OR MIT"), it should be
discarded so that the whole list does not become invalid.

Fixes #907
2025-05-12 18:58:58 -04:00
..
fixtures
more SPDX unit tests to illustrate matching behavior
2024-06-10 09:51:01 -07:00
config.test.ts
fixing minor typo
2024-10-27 23:34:29 -07:00
deny.test.ts
fix: Allow removal denied packages
2025-01-27 16:00:09 -05:00
dependency-graph.test.ts
Downgrade usage of retries.
2023-11-08 08:35:44 +01:00
external-config.test.ts
more SPDX unit tests to illustrate matching behavior
2024-06-10 09:51:01 -07:00
filter.test.ts
Fixing test name.
2023-11-28 08:08:29 +01:00
licenses.test.ts
Discard allow list entries that are not SPDX IDs
2025-05-12 18:58:58 -04:00
purl.test.ts
Allow slashes in purl package names
2024-05-02 19:11:08 +00:00
scorecard.test.ts
Add trailing slash to tests
2024-03-22 21:21:52 +00:00
spdx.test.ts
Fix tests and respond to review feedback
2025-05-06 12:25:30 -04:00
summary.test.ts
Do not list changes dependencies in summary
2024-09-16 11:29:47 -07:00
test-helpers.ts
Fix package-url parsing for allow-dependencies-licenses
2024-04-29 23:24:15 +00:00