summaryrefslogtreecommitdiff
path: root/.github/workflows/json4cpp-dependency-review.yml
diff options
context:
space:
mode:
Diffstat (limited to '.github/workflows/json4cpp-dependency-review.yml')
-rw-r--r--.github/workflows/json4cpp-dependency-review.yml23
1 files changed, 23 insertions, 0 deletions
diff --git a/.github/workflows/json4cpp-dependency-review.yml b/.github/workflows/json4cpp-dependency-review.yml
new file mode 100644
index 0000000000..42b6cc2b8c
--- /dev/null
+++ b/.github/workflows/json4cpp-dependency-review.yml
@@ -0,0 +1,23 @@
+name: "json4cpp: Dependency Review"
+
+on:
+ pull_request:
+ paths:
+ - 'json4cpp/**'
+
+permissions:
+ contents: read
+
+jobs:
+ dependency-review:
+ runs-on: ubuntu-latest
+ steps:
+ - name: Harden Runner
+ uses: step-security/harden-runner@fa2e9d605c4eeb9fcad4c99c224cee0c6c7f3594 # v2.16.0
+ with:
+ egress-policy: audit
+
+ - name: Checkout Repository
+ uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+ - name: Dependency Review
+ uses: actions/dependency-review-action@2031cfc080254a8a887f58cffee85186f0e49e48 # v4.9.0
generated by cgit 0.0.5-2-1-g0f52 (git 2.46.0) at 2026-04-05 20:24:52 +0000