From 9fc12c4582d8695d19898f9a85cbd5c7f3bf86d2 Mon Sep 17 00:00:00 2001
From: Thad Guidry <thadguidry@gmail.com>
Date: Mon, 25 Nov 2024 19:56:40 +0800
Subject: [PATCH] Add dependency security scanning to snapshot.yml

---
 .github/workflows/snapshot.yml | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/snapshot.yml b/.github/workflows/snapshot.yml
index 9c1784be..a5b37be9 100644
--- a/.github/workflows/snapshot.yml
+++ b/.github/workflows/snapshot.yml
@@ -13,7 +13,7 @@ on:
         default: 'master'
 
 permissions:
-  contents: read
+  contents: write
   packages: write
 
 jobs:
@@ -39,3 +39,5 @@ jobs:
         run: mvn -Drevision=${{ github.event.inputs.version }} --no-transfer-progress -B deploy -DdeployAtEnd --file pom.xml
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+      - name: Update dependency graph
+        uses: advanced-security/maven-dependency-submission-action@v4.1.1