GH OWASP dependency check #518

	name: GH OWASP dependency check

	on:
	pull_request:
	schedule:
	- cron: "17 23 * * 0"

	jobs:
	build:
	name: OWASP dependency check
	runs-on: ubuntu-latest

	steps:
	- uses: actions/checkout@v4

	- name: Set up JDK
	uses: actions/setup-java@v4
	with:
	java-version: 11
	distribution: 'zulu'
	cache: 'maven'

	- name: OWASP Dependency Check
	run: mvn -DnvdApiKey=${{ secrets.NVD_API_KEY }} -DskipTests -U package org.owasp:dependency-check-maven:check -fae -B -Dorg.slf4j.simpleLogger.defaultLogLevel=WARN -DfailBuildOnCVSS=7

	- name: Upload result to GitHub Code Scanning
	uses: github/codeql-action/upload-sarif@v3
	with:
	sarif_file: target/dependency-check-report.sarif

	- name: Cleanup snapshots
	run: \|
	find ~/.m2/repository -name "SNAPSHOT" -type d \| xargs rm -rf {}

Provide feedback