actions/dependency-submission/README.md at 0b06ce12c8f94e6b25b1df194ef16f58e8e9ad5c

gradle/actions

Fork 0

mirror of https://github.com/gradle/actions synced 2024-11-24 02:12:12 +00:00

Daz DeBoer 0b06ce12c8

Restructure documentation and add a dependency-submission FAQ (#110 )

2024-04-04 16:38:14 -06:00

956 B

Raw Blame History

The `dependency-submission` action

Generates and submits a dependency graph for a Gradle project, allowing GitHub to alert about reported vulnerabilities in your project dependencies.

The following workflow will generate a dependency graph for a Gradle project and submit it immediately to the repository via the Dependency Submission API. For most projects, this default configuration should be all that you need.

Simply add this as a new workflow file to your repository (eg .github/workflows/dependency-submission.yml).

name: Dependency Submission

on: [ push ]

permissions:
  contents: write

jobs:
  dependency-submission:
    runs-on: ubuntu-latest
    steps:
    - name: Checkout sources
      uses: actions/checkout@v4
    - name: Generate and submit dependency graph
      uses: gradle/actions/dependency-submission@v3

See the full action documentation for more advanced usage scenarios.

956 B Raw Blame History

The dependency-submission action

956 B

Raw Blame History

The `dependency-submission` action