From 26484748f90cd58e24a662ea5fd5d74199af773a Mon Sep 17 00:00:00 2001
From: Christoph Hamsen <hamsen.christoph@posteo.de>
Date: Thu, 1 Feb 2024 14:32:38 +0100
Subject: [PATCH] ci: compliance checks

---
 .github/workflows/.reusable-compliance.yml | 3 +++
 .github/workflows/pr.yml                   | 2 +-
 2 files changed, 4 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/.reusable-compliance.yml b/.github/workflows/.reusable-compliance.yml
index 1f9a8cc..af38ccf 100644
--- a/.github/workflows/.reusable-compliance.yml
+++ b/.github/workflows/.reusable-compliance.yml
@@ -46,11 +46,14 @@ jobs:
       inputs.skip != 'all'
     #    permissions:  #TODO: reactivate for non-private
     #      contents: write
+    #      pull-requests: write
     steps:
       - name: Checkout code
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
       - name: Review
         uses: actions/dependency-review-action@7bbfa034e752445ea40215fff1c3bf9597993d3f # v3.1.3
+        with:
+          comment-summary-in-pr: always
 
   check-commit-message:
     runs-on: ubuntu-latest
diff --git a/.github/workflows/pr.yml b/.github/workflows/pr.yml
index 413459d..c3b99cf 100644
--- a/.github/workflows/pr.yml
+++ b/.github/workflows/pr.yml
@@ -20,7 +20,7 @@ jobs:
     with:
       #TODO: adjust for non private
       skip_build: 'none'
-      skip_compliance_checks: 'all'
+      skip_compliance_checks: 'none'
       skip_unit_tests: 'all'
       skip_sast: 'all'
       skip_sca: 'all'