From c439a6ab86eab2904fe518e5785c4743be397f5d Mon Sep 17 00:00:00 2001 From: Marco Mariani Date: Thu, 2 Feb 2023 10:17:53 +0100 Subject: [PATCH 1/3] CI: dependency review action --- .github/workflows/dependency-review.yml | 28 +++++++++++++++++++++++++ 1 file changed, 28 insertions(+) create mode 100644 .github/workflows/dependency-review.yml diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml new file mode 100644 index 00000000000..faf4c8486a4 --- /dev/null +++ b/.github/workflows/dependency-review.yml @@ -0,0 +1,28 @@ +--- +name: Dependency review + +on: + push: + branches: + - master + - releases/** + paths-ignore: + - 'README.md' + pull_request: + branches: + - master + - releases/** + paths-ignore: + - 'README.md' + +jobs: + review: + name: "Dependency Review" + runs-on: ubuntu-latest + steps: + - name: Check out CrowdSec repository + uses: actions/checkout@v3 + - name: Dependency Review + uses: actions/dependency-review-action@v3 + with: + deny-licenses: 'GPL-1.0+' From 2acb0f40e1116fcec0ec8b20cf026e237f19fd64 Mon Sep 17 00:00:00 2001 From: Marco Mariani Date: Thu, 2 Feb 2023 11:44:54 +0100 Subject: [PATCH 2/3] wip --- .github/workflows/dependency-review.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index faf4c8486a4..da45c23831b 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -25,4 +25,4 @@ jobs: - name: Dependency Review uses: actions/dependency-review-action@v3 with: - deny-licenses: 'GPL-1.0+' + deny-licenses: 'MIT' From 15ef4cd36df88180f9761a9c9a18e1aad6a416ca Mon Sep 17 00:00:00 2001 From: marco Date: Fri, 2 Aug 2024 15:30:28 +0200 Subject: [PATCH 3/3] update action --- .github/workflows/dependency-review.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index da45c23831b..efe2a90a9b0 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -21,8 +21,8 @@ jobs: runs-on: ubuntu-latest steps: - name: Check out CrowdSec repository - uses: actions/checkout@v3 + uses: actions/checkout@v4 - name: Dependency Review - uses: actions/dependency-review-action@v3 + uses: actions/dependency-review-action@v4 with: deny-licenses: 'MIT'