Skip to content
Dependency Scan

feat: [SEC-7263] Add dependency-scan GitHub Actions workflow #1

Sign in to view logs

feat: [SEC-7263] Add dependency-scan GitHub Actions workflow

feat: [SEC-7263] Add dependency-scan GitHub Actions workflow #1

Workflow file for this run

.github/workflows/dependency-scan.yml at 6880856
name: Dependency Scan
on:
pull_request:
push:
branches:
- main
jobs:
generate-sbom:
runs-on: ${{ github.run_id }}/runner=ubuntu22-2cpu-8gb-x64
steps:
- uses: runs-on/action@cd2b598b0515d39d78c38a02d529db87d2196d1e # v2.0.3
- uses: launchdarkly/common-actions/init@main
- name: Generate SBOM
uses: launchdarkly/common-actions/dependency-scan/generate-sbom@main
with:
types: 'nodejs'
evaluate-policy:
runs-on: ${{ github.run_id }}/runner=ubuntu22-2cpu-8gb-x64
needs:
- generate-sbom
steps:
- uses: runs-on/action@cd2b598b0515d39d78c38a02d529db87d2196d1e # v2.0.3
- uses: launchdarkly/common-actions/init@main
- name: Evaluate SBOM Policy
uses: launchdarkly/common-actions/dependency-scan/evaluate-policy@main
with:
artifacts-pattern: bom-*