Skip to content

Bump actions/checkout from 4.0.0 to 4.1.0 #648

Bump actions/checkout from 4.0.0 to 4.1.0

Bump actions/checkout from 4.0.0 to 4.1.0 #648

---
name: 'Dependency Review'
on: [pull_request]
permissions:
contents: read
jobs:
dependency-review:
runs-on: ubuntu-latest
steps:
- name: Harden Runner
uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09 # tag=v2.5.1
with: # TODO: change to 'egress-policy: block' after couple of runs
egress-policy: audit
- name: 'Checkout Repository'
uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # tag=v4.1.0
- name: 'Dependency Review'
uses: actions/dependency-review-action@6c5ccdad469c9f8a2996bfecaec55a631a347034 # tag=v3.1.0