Skip to content

Temp gid

Temp gid #2

name: Review dependencies
on:
pull_request:
branches: ['main', 'release/**']
paths:
- 'go.*'
- 'cmd/go.*'
jobs:
review:
runs-on: ubuntu-latest
permissions:
# Write permissions needed to comment review results on PR.
# Pwn request risk mitigated by using pull_request workflow trigger
# and external contributor workflow runs require maintainer approval.
pull-requests: write
steps:
- uses: actions/checkout@v4
- uses: actions/dependency-review-action@v4
with:
config-file: './.github/dependency-review-config.yml'
comment-summary-in-pr: always