feat: Introduce provisioned roles in ACL #138
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Avoids introducing vulnerable dependencies to the main branch. | |
| name: Dependency review | |
| on: | |
| pull_request: | |
| jobs: | |
| dependency-review: | |
| runs-on: ubuntu-latest | |
| permissions: | |
| # To write dependency submission | |
| contents: write | |
| # To write comment on PR | |
| pull-requests: write | |
| steps: | |
| - uses: actions/checkout@1af3b93b6815bc44a9784bd300feb67ff0d1eeb3 # v6.0.0 | |
| # Required because Dependabot Alerts doesn't natively support Scala | |
| - uses: guardian/setup-scala@cc7b39e238d789370aa98fa5f07e609b6527657d # v1.1.0 | |
| - uses: scalacenter/sbt-dependency-submission@64084844d2b0a9b6c3765f33acde2fbe3f5ae7d3 # v3.1.0 | |
| - uses: actions/dependency-review-action@3c4e3dcb1aa7874d2c16be7d79418e9b7efd6261 # v4.8.2 | |
| with: | |
| fail-on-severity: high | |
| comment-summary-in-pr: always |