Open
Description
When checking the dependency review action output, we can see that the license and ScoreCard fields are empty.
Given that this action reports the vcs_url as well as a license field in metadata, this should not be the case.
TODO
- Reach out to GitHub to see how this can be solved. - [BUG] Vulnerability, License and ScoreCard Info missing for API Dependency Submission actions/dependency-review-action#923
- Implement Fix