Skip to content
Software Composition Analysis

Bump react-icons from 4.11.0 to 5.2.0 in /ui #1890

Sign in to view logs

Bump react-icons from 4.11.0 to 5.2.0 in /ui

Bump react-icons from 4.11.0 to 5.2.0 in /ui #1890

Workflow file for this run

.github/workflows/dependency-checks.yml at 7345521
name: Software Composition Analysis
on:
pull_request:
branches: [ main ]
schedule:
- cron: '23 22 * * 1'
jobs:
api:
name: API SCA
runs-on: ubuntu-latest
steps:
- name: Checkout πŸ›ŽοΈ
uses: actions/checkout@v4
- name: Dependency Check
uses: dependency-check/Dependency-Check_Action@1.1.0
id: depcheck
with:
project: 'snnap-api'
path: api/package-lock.json
format: 'ALL'
args: >
--failOnCVSS 8
- name: Upload Lint Sarif πŸ“Š
if: always()
uses: github/codeql-action/upload-sarif@v3
with:
sarif_file: reports/dependency-check-report.sarif
category: api
- name: Publish Result πŸ“Š
if: always()
uses: actions/upload-artifact@v4
with:
name: OWASP Dependency Check API Results
path: reports
ui:
name: UI SCA
runs-on: ubuntu-latest
steps:
- name: Checkout πŸ›ŽοΈ
uses: actions/checkout@v4
- name: Dependency Check
uses: dependency-check/Dependency-Check_Action@1.1.0
id: depcheck
with:
project: 'snnap-ui'
path: ui/package-lock.json
format: 'ALL'
args: >
--failOnCVSS 8
- name: Upload Lint Sarif πŸ“Š
if: always()
uses: github/codeql-action/upload-sarif@v3
with:
sarif_file: reports/dependency-check-report.sarif
category: ui
- name: Publish Result πŸ“Š
if: always()
uses: actions/upload-artifact@v4
with:
name: OWASP Dependency Check UI Results
path: reports