ci: add review dependencies workflow

Open austinvazquez opened this issue 1 year ago • 0 comments

Issue #, if available: N/A

Description of changes: This change improves on the current license check mechanism by using actions/dependency-review-action which also provides known vulnerability protection and insight into dependency OpenSSF Scorecard values for added third-party dependencies.

Testing done: N/A

[x] I've reviewed the guidance in CONTRIBUTING.md

License Acceptance

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

Aug 06 '24 02:08 austinvazquez