Including license check in dependency review

leandrodamascena · leandrodamascena · commit 35a3e6dd843a · 2025-05-06T15:37:14.000+01:00
diff --git a/.github/dependency-review-config.yml b/.github/dependency-review-config.yml
@@ -0,0 +1,19 @@
+allow-licenses:
+  - 'Apache-1.1'
+  - 'Apache-2.0'
+  - 'BSD-1-Clause'
+  - 'BSD-2-Clause'
+  - 'BSD-2-Clause-Views'
+  - 'BSD-3-Clause'
+  - 'BSD-3-Clause-Attribution'
+  - 'BSD-3-Clause-Clear'
+  - 'BSD-3-Clause-flex'
+  - 'BSD-3-Clause-HP'
+  - 'BSD-3-Clause-LBNL'
+  - 'BSD-3-Clause-Modification'
+  - 'BSD-3-Clause-No-Military-License'
+  - 'BSD-3-Clause-No-Nuclear-License'
+  - 'BSD-3-Clause-No-Nuclear-License-2014'
+  - 'BSD-3-Clause-No-Nuclear-Warranty'
+  - 'BSD-3-Clause-Open-MPI'
+comment-summary-in-pr: on-failure
diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml
@@ -15,8 +15,14 @@ permissions:
 jobs:
   dependency-review:
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      pull-requests: write
     steps:
       - name: 'Checkout Repository'
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
       - name: 'Dependency Review'
         uses: actions/dependency-review-action@ce3cf9537a52e8119d91fd484ab5b8a807627bf8 # v4.6.0
+        with:
+          config-file: './.github/dependency-review-config.yml'
+
