-
Notifications
You must be signed in to change notification settings - Fork 121
Issues: actions/dependency-review-action
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
Add a Git hook for building JS files
enhancement
New feature or request
Keep
Exempt this from stalebot
#249
opened Sep 22, 2022 by
febuiles
Properly handle 502s from Dependency Review API
enhancement
New feature or request
Keep
Exempt this from stalebot
#398
opened Feb 8, 2023 by
febuiles
Handle API errors / rate limits more gracefully
bug
Something isn't working
enhancement
New feature or request
Keep
Exempt this from stalebot
#555
opened Aug 28, 2023 by
rajbos
Reachability - Add a flag to only block only on reachable dependencies.
enhancement
New feature or request
Keep
Exempt this from stalebot
#708
opened Mar 8, 2024 by
felickz
[BUG] Something isn't working
allow-dependencies-licenses not respected after changing from == to >= with Python
bug
#812
opened Aug 12, 2024 by
altendky
[BUG] Dependency Review reports the Vulnerability which we are updating.
bug
Something isn't working
#830
opened Sep 22, 2024 by
Shweta4398
Different configuration per package type?
enhancement
New feature or request
#834
opened Oct 1, 2024 by
steve-gore-snapdocs
[BUG] elliptic is reported with an OFL-1.1 license.
bug
Something isn't working
#862
opened Jan 15, 2025 by
BAcanLL
[BUG] Empty "Scanned Files" and "OpenSSF Scorecard" sections if no issues found
bug
Something isn't working
#863
opened Jan 17, 2025 by
fabasoad
[BUG] what is the license of json-schema-ref-parser
bug
Something isn't working
#868
opened Jan 21, 2025 by
Loki-Afro
Support specifying a range of versions in deny-packages
enhancement
New feature or request
#882
opened Jan 24, 2025 by
ellenfieldn
[BUG] Using allow-dependencies-licenses still warns as no license found
bug
Something isn't working
#889
opened Jan 29, 2025 by
mbbeaudry-coveo
Option to suppress vulnerabilities during dependency check
enhancement
New feature or request
#890
opened Jan 29, 2025 by
duckdeer
[BUG] DR review unable to find snapshot for head SHA when used in reusable workflow with workflow_call
bug
Something isn't working
#892
opened Feb 5, 2025 by
AppSecCharlie
Allow ignoring particular sources of dependencies
enhancement
New feature or request
Keep
Exempt this from stalebot
#459
opened Apr 19, 2023 by
AlekSi
Improve Snapshots Experience
enhancement
New feature or request
Keep
Exempt this from stalebot
#567
opened Sep 14, 2023 by
febuiles
1 task done
[BUG] warn-only set and job fails when having a vulnerability
bug
Something isn't working
Stale
#824
opened Aug 28, 2024 by
dolorsfg
Add option for commit status check
enhancement
New feature or request
Stale
#825
opened Aug 30, 2024 by
ebickle
[BUG] action does fail with valid licenses like Unicode-3.0
bug
Something isn't working
#854
opened Dec 6, 2024 by
ailox
[BUG] unable to upload summary: upload aborted, supports content up to a size of 1024k, got 1028k
bug
Something isn't working
#867
opened Jan 21, 2025 by
Loki-Afro
[BUG] Listing too many allow-dependencies-licenses makes the summary output unreadable
bug
Something isn't working
#801
opened Jul 23, 2024 by
jtomkiew-mng
Print New feature or request
Dependency Changes in PR comment
enhancement
#813
opened Aug 13, 2024 by
wzieba
[BUG] Dependency Review gets stuck if forked .
bug
Something isn't working
Stale
#820
opened Aug 22, 2024 by
Shweta4398
Show patched version of dependency in the dependency review summary
enhancement
New feature or request
Stale
#823
opened Aug 26, 2024 by
virangdoshi
Previous Next
ProTip!
Find all open issues with in progress development work with linked:pr.