Dependency Review
This workflow verifies if the changes of a pull request would introduce vulnerabilities. After the analysis, it adds a summary comment in the pull request, detailing the findings of the security review.
Install
curl -s https://getactions.dev/security/dependency-review | sh
Should this workflow not align perfectly with your requirements, don't hesitate! We'd love to add your workflow.
Searching for a specific workflow, but can't find it?