Skip to content

Bump drf-spectacular from 0.26.2 to 0.26.4 in /server #31

Bump drf-spectacular from 0.26.2 to 0.26.4 in /server

Bump drf-spectacular from 0.26.2 to 0.26.4 in /server #31

name: 'Dependency Review'
# When a PR is made and the dependencies change, check for vulnerabilities and that the
# licenses are permissive (not GPL).
on:
pull_request:
paths:
- 'server/requirements*.txt'
- 'client/package*.json'
workflow_dispatch:
permissions:
contents: read
pull-requests: write
jobs:
dependency-review:
runs-on: ubuntu-latest
steps:
- name: 'Checkout Repository'
uses: actions/checkout@v3
- name: 'Dependency Review'
uses: actions/dependency-review-action@v3
with:
comment-summary-in-pr: true
fail-on-severity: high
# We only want permissive licenses to allow
# people to take this project and run with it
deny-licenses: GPL-1.0-or-later