Skip to content

Commit

Permalink
Pin version and ignore broken versions for dependency-review-action
Browse files Browse the repository at this point in the history 
See #148

Import kachick/anylang-template@ef7a373
  • Loading branch information
@kachick
kachick committed Apr 30, 2024
1 parent 1841c0e commit 54e736d
Show file tree
Hide file tree
Showing 2 changed files with 9 additions and 1 deletion.
8 changes: 8 additions & 0 deletions .github/dependabot.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,14 @@ updates:
directory: '/'
schedule:
interval: 'weekly'
ignore:
- dependency-name: 'actions/dependency-review-action'
versions:
# https://github.com/actions/dependency-review-action/issues/759
- '4.3.1'
- '4.3.0'
# https://github.com/actions/dependency-review-action/issues/493
- '3.0.5'
groups:
DeterminateSystems-actions:
patterns:
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/dependency-review.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ jobs:
- name: 'Checkout Repository'
uses: actions/checkout@v4
- name: 'Dependency Review'
uses: actions/dependency-review-action@v4
uses: actions/dependency-review-action@v4.2.5
with:
# https://spdx.org/licenses/
allow-licenses: MIT, BSD-3-Clause, BSD-2-Clause, 0BSD, Unlicense, ISC, Apache-2.0, CC-BY-4.0
Expand Down

0 comments on commit 54e736d

Please sign in to comment.