mirror of
https://github.com/MichMich/MagicMirror.git
synced 2025-12-12 01:42:19 +00:00
19 lines
528 B
YAML
19 lines
528 B
YAML
# This workflow scans your pull requests for dependency changes, and will raise an error if any vulnerabilities or invalid licenses are being introduced.
|
|
# For more information see: https://github.com/actions/dependency-review-action
|
|
|
|
name: "Review Dependencies"
|
|
|
|
on: [pull_request]
|
|
|
|
permissions:
|
|
contents: read
|
|
|
|
jobs:
|
|
dependency-review:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- name: "Checkout code"
|
|
uses: actions/checkout@v5
|
|
- name: "Dependency Review"
|
|
uses: actions/dependency-review-action@v4
|