rebase: bump the github-dependencies group in /e2e with 2 updates #6261
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| name: 'Dependency Review' | |
| # yamllint disable-line rule:truthy | |
| on: | |
| pull_request: | |
| branches: | |
| - '*' | |
| permissions: | |
| contents: read | |
| # cancel the in-progress workflow when PR is refreshed. | |
| concurrency: | |
| # yamllint disable-line rule:truthy rule:line-length | |
| group: ${{ github.workflow }}-${{ github.event_name == 'pull_request' && github.head_ref || github.sha }} | |
| cancel-in-progress: true | |
| jobs: | |
| dependency-review: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: 'Checkout Repository' | |
| # yamllint disable-line rule:line-length | |
| uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 | |
| - name: 'Dependency Review' | |
| # yamllint disable-line rule:line-length | |
| uses: actions/dependency-review-action@40c09b7dc99638e5ddb0bfd91c1673effc064d8a # v4.8.1 | |
| with: | |
| allow-ghsas: GHSA-f4w6-3rh6-6q4q |