Skip to content

chore(deps): bump anchore/sbom-action from 0.17.7 to 0.17.8 #490

chore(deps): bump anchore/sbom-action from 0.17.7 to 0.17.8

chore(deps): bump anchore/sbom-action from 0.17.7 to 0.17.8 #490

Workflow file for this run

name: build
on:
push:
branches:
- "main"
tags:
- "v*"
pull_request:
jobs:
build:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/setup-go@v5
with:
go-version: stable
- run: make setup
- run: make test
- run: git diff
- uses: codecov/codecov-action@v5
with:
file: ./coverage.txt
dependabot:
needs: [build]
runs-on: ubuntu-latest
permissions:
pull-requests: write
contents: write
if: ${{ github.actor == 'dependabot[bot]' && github.event_name == 'pull_request'}}
steps:
- id: metadata
uses: dependabot/fetch-metadata@v2
with:
github-token: "${{ secrets.GITHUB_TOKEN }}"
- run: |
gh pr review --approve "$PR_URL"
gh pr merge --squash --auto "$PR_URL"
env:
PR_URL: ${{github.event.pull_request.html_url}}
GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}