Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Commit 8d420b8

Browse files
AshelyTCAshelyTC
authored
Merge branch 'main' into dependabot/npm_and_yarn/multi-c22e25d29b
2 parents 74c8179 + bde0129 commit 8d420b8

File tree

7 files changed

+101
-82
lines changed

7 files changed

+101
-82
lines changed

.github/workflows/check-dist.yml

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -16,6 +16,9 @@ on:
1616
- '**.md'
1717
workflow_dispatch:
1818

19+
permissions:
20+
contents: read
21+
1922
jobs:
2023
check-dist:
2124
runs-on: ubuntu-latest

.github/workflows/ci.yml

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -10,6 +10,9 @@ on:
1010
paths-ignore:
1111
- '**.md'
1212

13+
permissions:
14+
contents: read
15+
1316
jobs:
1417
test:
1518
runs-on: ubuntu-latest

README.md

Lines changed: 20 additions & 13 deletions
Original file line numberDiff line numberDiff line change
@@ -1,13 +1,23 @@
11
# dependency-review-action
22

3-
- [Overview](#overview)
4-
- [Installation](#installation)
5-
- [Configuration](#configuration)
6-
- [Using dependency review action to block a pull request from being merged](#using-dependency-review-action-to-block-a-pull-request-from-being-merged)
7-
- [Outputs](#outputs)
8-
- [Getting help](#getting-help)
9-
- [Contributing](#contributing)
10-
- [License](#license)
3+
- [dependency-review-action](#dependency-review-action)
4+
- [Overview](#overview)
5+
- [Viewing the results](#viewing-the-results)
6+
- [Installation](#installation)
7+
- [Installation (standard)](#installation-standard)
8+
- [Installation (GitHub Enterprise Server)](#installation-github-enterprise-server)
9+
- [Configuration](#configuration)
10+
- [Configuration options](#configuration-options)
11+
- [Configuration methods](#configuration-methods)
12+
- [Option 1: Using inline configuration](#option-1-using-inline-configuration)
13+
- [Option 2: Using an external configuration file](#option-2-using-an-external-configuration-file)
14+
- [`OTHER` in license strings](#other-in-license-strings)
15+
- [Further information](#further-information)
16+
- [Using dependency review action to block a pull request from being merged](#using-dependency-review-action-to-block-a-pull-request-from-being-merged)
17+
- [Outputs](#outputs)
18+
- [Getting help](#getting-help)
19+
- [Contributing](#contributing)
20+
- [License](#license)
1121

1222
## Overview
1323

@@ -205,15 +215,12 @@ You can use an external configuration file to specify settings for this action.
205215
3. Create the configuration file in the path you specified for `config-file`.
206216
4. In the configuration file, specify your chosen settings.
207217
```yaml
208-
fail_on_severity: 'critical'
209-
allow_licenses:
218+
fail-on-severity: 'critical'
219+
allow-licenses:
210220
- 'GPL-3.0'
211221
- 'BSD-3-Clause'
212222
- 'MIT'
213223
```
214-
> [!NOTE]
215-
> For external configuration files, the option names use underscores instead of dashes.
216-
> Example: `fail_on_severity`
217224

218225
#### `OTHER` in license strings
219226

dist/index.js

Lines changed: 1 addition & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

dist/index.js.map

Lines changed: 1 addition & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

package-lock.json

Lines changed: 68 additions & 62 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

package.json

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
{
22
"name": "dependency-review-action",
3-
"version": "4.7.1",
3+
"version": "4.7.2",
44
"private": true,
55
"description": "A GitHub Action for Dependency Review",
66
"main": "lib/main.js",
@@ -37,8 +37,8 @@
3737
"octokit": "^3.1.2",
3838
"spdx-expression-parse": "^3.0.1",
3939
"spdx-satisfies": "^6.0.0",
40-
"ts-jest": "^29.4.0",
41-
"yaml": "^2.8.0",
40+
"ts-jest": "^29.4.1",
41+
"yaml": "^2.8.1",
4242
"zod": "^3.24.1"
4343
},
4444
"devDependencies": {
@@ -52,11 +52,11 @@
5252
"eslint": "^8.57.0",
5353
"eslint-plugin-github": "^4.10.2",
5454
"eslint-plugin-jest": "^28.8.3",
55-
"eslint-plugin-prettier": "^5.5.1",
55+
"eslint-plugin-prettier": "^5.5.4",
5656
"js-yaml": "^4.1.0",
5757
"nodemon": "^3.1.10",
5858
"prettier": "3.6.2",
59-
"typescript": "^5.8.3"
59+
"typescript": "^5.9.2"
6060
},
6161
"overrides": {
6262
"cross-spawn": ">=7.0.5",

0 commit comments

Comments
 (0)