Skip to content

Bump actions/checkout from 4.1.5 to 4.1.6 #45

Bump actions/checkout from 4.1.5 to 4.1.6

Bump actions/checkout from 4.1.5 to 4.1.6 #45

name: Dependency Review
on:
pull_request:
branches: main
permissions:
contents: read
jobs:
dependency-review:
if: ${{ github.repository_owner == 'ihub-pub' }}
permissions:
contents: read
name: Dependency Review Scan
runs-on: ubuntu-latest
steps:
- name: Harden Runner
uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 # v2.7.1
with:
disable-sudo: true
egress-policy: audit
- name: 'Checkout Repository'
uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
- name: 'Dependency Review'
uses: actions/dependency-review-action@0c155c5e8556a497adf53f2c18edabf945ed8e70 # v4.3.2