actions/dependency-review-action
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
c083fa14993f8796692017c72e86fc345fd4dc62
dependency-review-action/README.md
Federico Builes 3f943b86c9 initial commit
2022-03-31 18:31:39 +02:00

1.2 KiB
Raw Blame History

dependency-review-action

This Action scans your pull requests for vulnerabilities introduced when adding or updating your project's dependencies. A check in your Pull Requests will let notify you of the results.

Screen Shot 2022-03-31 at 1 10 51 PM

Installation

  1. Add a new YAML workflow to your .github/workflows folder:
name: 'Dependency Review'
on: [pull_request]

permissions:
  contents: read

jobs:
  dependency-review:
    runs-on: ubuntu-latest
    steps:
      - name: 'Checkout Repository'
        uses: actions/checkout@v3
      - name: 'Dependency Review'
        uses: actions/dependency-review-action@v1

Getting help

If you have bug reports, questions or suggestions please create a new issue.

Contributing

We are grateful for any contributions made to this project.

Please read CONTRIBUTING.MD to get started.

License

This project is released under the MIT License.