Skip to content

Commit c19cd44

Browse files
Update Managed Files (#655)
* Update dep-review * Update commit-signing
1 parent 4175638 commit c19cd44

2 files changed

Lines changed: 54 additions & 0 deletions

File tree

Lines changed: 29 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,29 @@
1+
name: 🚨 Check commit signing
2+
3+
on:
4+
push:
5+
branches:
6+
- long_lived/**
7+
- main
8+
- release/**
9+
pull_request:
10+
branches:
11+
- "**"
12+
13+
concurrency:
14+
group: ${{ github.event_name == 'pull_request' && format('{0}-{1}', github.workflow_ref, github.event.pull_request.number) || github.run_id }}
15+
cancel-in-progress: true
16+
17+
jobs:
18+
check-commit-signing:
19+
name: Check commit signing
20+
runs-on: [ubuntu-latest]
21+
timeout-minutes: 5
22+
23+
steps:
24+
- name: Checkout Code
25+
uses: actions/checkout@v4
26+
with:
27+
fetch-depth: 0
28+
29+
- uses: chia-network/actions/check-commit-signing@main
Lines changed: 25 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,25 @@
1+
# Managed by repo-content-updater
2+
# Dependency Review Action
3+
#
4+
# This Action will scan dependency manifest files that change as part of a Pull Request, surfacing known-vulnerable versions of the packages declared or updated in the PR. Once installed, if the workflow run is marked as required, PRs introducing known-vulnerable packages will be blocked from merging.
5+
#
6+
# Source repository: https://github.com/actions/dependency-review-action
7+
# Public documentation: https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/about-dependency-review#dependency-review-enforcement
8+
name: "🚨 Dependency Review"
9+
on: [pull_request]
10+
11+
permissions:
12+
contents: read
13+
14+
jobs:
15+
dependency-review:
16+
runs-on: ubuntu-latest
17+
steps:
18+
- name: "Checkout Repository"
19+
uses: actions/checkout@v4
20+
21+
- name: "Dependency Review"
22+
uses: actions/dependency-review-action@v4
23+
with:
24+
allow-dependencies-licenses: pkg:pypi/pylint, pkg:pypi/pyinstaller
25+
deny-licenses: AGPL-1.0-only, AGPL-1.0-or-later, AGPL-1.0-or-later, AGPL-3.0-or-later, GPL-1.0-only, GPL-1.0-or-later, GPL-2.0-only, GPL-2.0-or-later, GPL-3.0-only, GPL-3.0-or-later

0 commit comments

Comments
 (0)