ceph-csi/.github/workflows/dependency-review.yaml

---
name: 'Dependency Review'
# yamllint disable-line rule:truthy
on:
  pull_request:
    branches:
      - '*'


permissions:
  contents: read

jobs:
  dependency-review:
    runs-on: ubuntu-latest
    steps:
      - name: 'Checkout Repository'
        # yamllint disable-line rule:line-length
        uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332  # v4.1.7
      - name: 'Dependency Review'
        # yamllint disable-line rule:line-length
        uses: actions/dependency-review-action@5a2ce3f5b92ee19cbb1541a4984c76d921601d7c  # v4.3.4
        with:
          allow-ghsas: GHSA-f4w6-3rh6-6q4q