on:
pull_request:
name: Audit
jobs:
commit-check:
name: Check commit log
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v1
with:
ref: ${{ github.event.pull_request.head.sha }}
- name: Validate commit history
uses: aevea/commitsar@v0.20.1
deny:
name: Check dependencies
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
name: git checkout
- name: Dependency Review
uses: actions/dependency-review-action@v3.0.3
with:
fail-on-severity: moderate
fail-on-scopes: runtime