diff --git a/code-scanning/dependency-review.yml b/code-scanning/dependency-review.yml index 39d06e3..82c1ef5 100644 --- a/code-scanning/dependency-review.yml +++ b/code-scanning/dependency-review.yml @@ -20,6 +20,8 @@ on: # https://docs.github.com/en/enterprise-cloud@latest/code-security/supply-chain-security/understanding-your-software-supply-chain/using-the-dependency-submission-api permissions: contents: read + # Required if `comment-summary-in-pr: true` is uncommented below + # pull-requests: write jobs: dependency-review: @@ -29,7 +31,7 @@ jobs: uses: actions/checkout@v4 - name: 'Dependency Review' uses: actions/dependency-review-action@v4 - # Commonly enabled options (https://github.com/actions/dependency-review-action#configuration-options) + # Commonly enabled options, see https://github.com/actions/dependency-review-action#configuration-options for all available options. # with: # fail-on-severity: moderate # deny-licenses: GPL-1.0-or-later, LGPL-2.0-or-later