mirror of
https://github.com/slsa-framework/slsa-verifier.git
synced 2026-05-06 16:46:57 +00:00
c6a59bb827
> This action scans your pull requests for dependency changes and will raise an error if any > new dependencies have existing vulnerabilities. The action is supported > by an API endpoint that diffs the dependencies between any two revisions. - Included the https://github.com/actions/dependency-review-action Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>