https://github.com/advanced-security/conda-dependency-submission-action
https://github.com/advanced-security/conda-dependency-submission-action
Last synced: 2 months ago
JSON representation
- Host: GitHub
- URL: https://github.com/advanced-security/conda-dependency-submission-action
- Owner: advanced-security
- License: mit
- Created: 2023-02-18T01:00:23.000Z (about 2 years ago)
- Default Branch: main
- Last Pushed: 2023-07-06T06:06:13.000Z (almost 2 years ago)
- Last Synced: 2025-01-10T00:15:20.676Z (4 months ago)
- Language: TypeScript
- Size: 2.75 MB
- Stars: 0
- Watchers: 1
- Forks: 3
- Open Issues: 6
-
Metadata Files:
- Readme: README.md
- Contributing: CONTRIBUTING.md
- License: LICENSE
- Code of conduct: CODE_OF_CONDUCT.md
- Codeowners: CODEOWNERS
- Security: SECURITY.md
- Support: SUPPORT.md
Awesome Lists containing this project
README
# Conda dependency submission action
This repository scans Conda environment.yaml files and uploads the results to the dependency graph. While GitHub does not support alerting on OS-level dependencies, it will alert on any PyPI dependencies that are defined in the environment.yaml.
### Example workflow
```yaml
name: Conda dependency submission
on:
workflow_dispatch:
push:
permissions:
id-token: write
contents: write
jobs:
dependency-submission:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- name: Conda dependency scanning
uses: jhutchings1/[email protected]
```
# License
This project is licensed under the terms of the MIT open source license. Please refer to [MIT](LICENSE.md) for the full terms.