New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Allow this action to run on branch #754
Comments
You can specify the base/head where the diff of those two will be used to create the list of dependencies to review. dependency-review-action/action.yml Lines 25 to 30 in 0659a74
Ex: https://github.com/ctcampbellcom/WebGoat/actions/runs/8667866545
|
Thank you to @felickz for the very thorough answer on the topic of running on branches! I'll take the other part of this issue:
That's not really the use case that Dependency Review is intended to solve. It sounds like what you want is something like Dependabot alerts, but with support for multiple branches. Is that right? |
Thank you @felickz. I will give it a try based on your recommendation and let you know. |
@juxtin - I was looking for something similar to Veracode SCA (https://github.com/marketplace/actions/veracode-dependency-scanning) where I can run the dependency review on a branch or any commit. This would be a great improvement if it can be supported. Let me know. |
Currently, this action only allows running on PRs. Is it possible to allow this action to run on a specified branch? How will it detect when there is no change in dependencies, yet the issue is introduced by the old version being used?
The text was updated successfully, but these errors were encountered: