issues Search Results · repo:actions/dependency-review-action language:TypeScript
Filter by
179 results
(80 ms)179 results
inactions/dependency-review-action (press backspace or delete to remove)Describe the bug I do not see an incompatible license.
To Reproduce Steps to reproduce the behavior:
1. Go to https://github.com/scottschreckengaust/dependency-review-action-issues-944/pulls
2. Click ...
bug
scottschreckengaust
- Opened 6 days ago
- #944
Describe the bug A clear and concise description of what the bug is.
To Reproduce Steps to reproduce the behavior:
1. Go to ...
2. Click on ....
3. Scroll down to ....
4. See error
Expected behavior ...
bug
jesusvn204
- Opened 8 days ago
- #942
Describe the bug I have several repositories in the organization that are having problems with some packages, especially
from NPM.
For example, in the @primeng/themes library
(https://github.com/primefaces/primeng/blob/master/packages/themes/package.json), ...
bug
ES00660463
- Opened 19 days ago
- #939
I ll start with an opinion: a license deny list is a bad idea. A company using one would put copyleft licenses like
GPL-2.0 in there, potentially missing other copyleft licenses like CC-BY-SA-4.0 or maybe ...
enhancement
dangoor
- 1
- Opened 23 days ago
- #938
Describe the bug When I run npm audit I see 0 vulnerabilities. I install a dependency which introduces 2 critical
vulnerabilities and run npm audit, I see the 2 critical vulnerabilities. If I raise a PR ...
bug
cristianrgreco
- 1
- Opened on May 28
- #936
Describe the bug
When submitting dependencies via the Dependency Submission API, License and ScoreCard Info is empty.
To Reproduce Steps to reproduce the behavior:
1. Report Dependencies via API. Example ...
bug
maennchen
- 1
- Opened on Apr 26
- #923
Is your feature request related to a problem? Please describe. When a dependency is added and dependency-review-action
is enabled after, the dependency isn t scanned.
Describe the solution you d like ...
enhancement
Wovchena
- Opened on Apr 17
- #922
Describe the bug Error message mentions private repositories, but the action can know that the repository in question is
not private.
To Reproduce Steps to reproduce the behavior:
1. Go to https://github.com/check-spelling-sandbox/caffeine/actions/runs/14451650273/job/40525556101?pr=1#step:5:9 ...
bug
jsoref
- Opened on Apr 14
- #919
Describe the bug The dependency-review-action does not properly resolve package versions in C# projects that use
centralized package management (Directory.Packages.props). The action inspects only .csproj ...
bug
dave-schmitz1
- Opened on Apr 10
- #917
Describe the bug v4 tag should be updated to point to the latest v4.6.0
To Reproduce Steps to reproduce the behavior:
1. Go to Tags page
2. Look at the SHA of v4 and v4.6.0
Expected behavior SHA should ...
bug
fabasoad
- 3
- Opened on Apr 1
- #912
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip!
Press the /
key to activate the search input again and adjust your query.Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip!
Press the /
key to activate the search input again and adjust your query.