We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
1 parent 393801d commit 6837643Copy full SHA for 6837643
.github/workflows/dependency-review.yml
@@ -15,6 +15,8 @@ permissions:
15
jobs:
16
dependency-review:
17
runs-on: ubuntu-latest
18
+ permissions:
19
+ pull-requests: write
20
steps:
21
- name: Harden the runner (Audit all outbound calls)
22
uses: step-security/harden-runner@4d991eb9b905ef189e4c376166672c3f2f230481 # v2.11.0
@@ -25,3 +27,5 @@ jobs:
25
27
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
26
28
- name: 'Dependency Review'
29
uses: actions/dependency-review-action@3b139cfc5fae8b618d3eae3675e383bb1769c019 # v4.5.0
30
+ with:
31
+ comment-summary-in-pr: true
0 commit comments