Skip to content

:dependabot: github-actions(deps): Bump actions/attest-sbom from 1.4.1 to 2.1.0 #328

:dependabot: github-actions(deps): Bump actions/attest-sbom from 1.4.1 to 2.1.0

:dependabot: github-actions(deps): Bump actions/attest-sbom from 1.4.1 to 2.1.0 #328

---
name: 🔍 Dependency Review
on:
pull_request:
branches:
- main
types:
- edited
- opened
- reopened
- synchronize
permissions: {}
jobs:
dependency-review:
name: Dependency Review
runs-on: ubuntu-latest
permissions:
contents: read
steps:
- name: Checkout
id: checkout
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
- name: Dependency Review
id: dependency_review
uses: actions/dependency-review-action@3b139cfc5fae8b618d3eae3675e383bb1769c019 # v4.5.0
with:
fail-on-severity: critical