Skip to content

Bump github/codeql-action from 3.25.10 to 3.27.6 #380

Bump github/codeql-action from 3.25.10 to 3.27.6

Bump github/codeql-action from 3.25.10 to 3.27.6 #380

---
name: "📦 Dependency Review"
on:
pull_request: {}
workflow_call: {}
permissions:
contents: read
jobs:
dependency-review:
name: "🏭 Scanning"
runs-on: ubuntu-latest
steps:
- name: "⤵️ Check out code from GitHub"
uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c
- name: "🏗 Dependency Review"
uses: actions/dependency-review-action@72eb03d02c7872a771aacd928f3123ac62ad6d3a
with:
# Possible values: "critical", "high", "moderate", "low"
fail-on-severity: high
allow-licenses: GPL-3.0, BSD-3-Clause, MIT, Apache-2.0
# deny-licenses: LGPL-2.0, BSD-2-Clause