onedeuxtriseigo.nullpo.dev / yomitan
Pop-up dictionary browser extension for language learning. Successor to Yomichan. (PERSONAL FORK)
fork atom
yomitan / .github / workflows / dependency-review.yml
at lambda-fork/main 27 lines 970 B view raw
dependabot[bot] Bump actions/checkout from 4 to 5 (#2231)
e5388c26
1# Dependency Review Action 2# 3# This Action will scan dependency manifest files that change as part of a Pull Request, 4# surfacing known-vulnerable versions of the packages declared or updated in the PR. 5# Once installed, if the workflow run is marked as required, 6# PRs introducing known-vulnerable packages will be blocked from merging. 7# 8# Source repository: https://github.com/actions/dependency-review-action 9name: 'Dependency Review' 10on: [pull_request] 11 12permissions: 13 contents: read 14 15jobs: 16 dependency-review: 17 runs-on: ubuntu-latest 18 steps: 19 - name: Harden Runner 20 uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1 21 with: 22 egress-policy: audit 23 24 - name: 'Checkout Repository' 25 uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.3.1 26 - name: 'Dependency Review' 27 uses: actions/dependency-review-action@56339e523c0409420f6c2c9a2f4292bbb3c07dd3 # v4.8.0