From a75b262432a2b29f7e401db0b2ca4369755e2ddf Mon Sep 17 00:00:00 2001
From: Simon Templer <simon@wetransform.to>
Date: Tue, 10 Oct 2023 14:28:26 +0200
Subject: [PATCH] ci: add PR workflow for checking dependencies

---
 .github/workflows/check.yml | 18 ++++++++++++++++++
 build.gradle                |  3 +++
 2 files changed, 21 insertions(+)
 create mode 100644 .github/workflows/check.yml

diff --git a/.github/workflows/check.yml b/.github/workflows/check.yml
new file mode 100644
index 0000000..3ce5890
--- /dev/null
+++ b/.github/workflows/check.yml
@@ -0,0 +1,18 @@
+name: Check
+
+on:
+  pull_request:
+    branches:
+      - master
+
+jobs:
+  check:
+    uses: wetransform/gha-workflows/.github/workflows/gradle-library.yml@master
+    with:
+      gradle-tasks: ''
+      java-version: 8
+      notify-failure: false
+      # skip-build: true
+      expect-tests: false
+      submodules: 'recursive'
+    secrets: inherit
diff --git a/build.gradle b/build.gradle
index d51c154..bb98678 100644
--- a/build.gradle
+++ b/build.gradle
@@ -212,6 +212,9 @@ configurations {
 				details.useTarget "com.hierynomus:sshj:${details.requested.version}"
 			}
 		}
+
+		// activate dependency locking for generating a lockfile for security scanning
+		resolutionStrategy.activateDependencyLocking()
 	}
 }