This is an automated email from the ASF dual-hosted git repository.
jinterrante pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/daffodil.git
The following commit(s) were added to refs/heads/main by this push:
new 6817d41e7 Create dependency-scan.yml
6817d41e7 is described below
commit 6817d41e7a022181df0f2665893b0110062df6e4
Author: Justin Hutchings <[email protected]>
AuthorDate: Wed Aug 17 10:02:57 2022 -0700
Create dependency-scan.yml
Update name
Remove PR scans
Update license
Update dependency-scan.yml
---
.github/workflows/dependency-scan.yml | 42 +++++++++++++++++++++++++++++++++++
1 file changed, 42 insertions(+)
diff --git a/.github/workflows/dependency-scan.yml
b/.github/workflows/dependency-scan.yml
new file mode 100644
index 000000000..581a2b117
--- /dev/null
+++ b/.github/workflows/dependency-scan.yml
@@ -0,0 +1,42 @@
+# Licensed to the Apache Software Foundation (ASF) under one or more
+# contributor license agreements. See the NOTICE file distributed with
+# this work for additional information regarding copyright ownership.
+# The ASF licenses this file to You under the Apache License, Version 2.0
+# (the "License"); you may not use this file except in compliance with
+# the License. You may obtain a copy of the License at
+#
+# http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+name: Dependency scan
+
+# Controls when the workflow will run
+on:
+ # Triggers the workflow on push or pull request events but only for the
"main" branch
+ push:
+ branches: [ "main" ]
+
+ # Allows you to run this workflow manually from the Actions tab
+ workflow_dispatch:
+
+# A workflow run is made up of one or more jobs that can run sequentially or
in parallel
+jobs:
+ # This workflow contains a single job called "build"
+ build:
+ # The type of runner that the job will run on
+ runs-on: ubuntu-20.04
+
+ # Steps represent a sequence of tasks that will be executed as part of the
job
+ steps:
+ # Checks-out your repository under $GITHUB_WORKSPACE, so your job can
access it
+ - uses: actions/[email protected]
+
+ - name: Sbt Dependency Submission
+ # You may pin to the exact commit or the version.
+ # uses:
scalacenter/sbt-dependency-submission@ab086b50c947c9774b70f39fc7f6e20ca2706c91
+ uses: scalacenter/[email protected]
