Skip to content
dependency-review

ci: split into parallel jobs, add cross-OS tests, race, govulncheck, CodeQL, dep-review #3

Sign in to view logs

ci: split into parallel jobs, add cross-OS tests, race, govulncheck, CodeQL, dep-review

ci: split into parallel jobs, add cross-OS tests, race, govulncheck, CodeQL, dep-review #3

Workflow file for this run

.github/workflows/dependency-review.yml at 5f24e93
name: dependency-review
on:
pull_request:
permissions:
contents: read
jobs:
review:
runs-on: ubuntu-latest
timeout-minutes: 5
permissions:
contents: read
pull-requests: write
steps:
- uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.3.1
with:
persist-credentials: false
# Bare-minimum invocation: the action gets PR base/head from the
# pull_request event payload. Defaults to fail-on-severity=low, which is
# the recommended initial setting. Tighten/loosen once we've seen the
# action complete a green run.
- uses: actions/dependency-review-action@2031cfc080254a8a887f58cffee85186f0e49e48 # v4.9.0