tds-community icon indicating copy to clipboard operation
tds-community copied to clipboard
Published 1 year ago verified publisher icon telus

Dependency Review Rule Added

Open samigt opened this issue 9 months ago • 0 comments

🔍 Dependency Review Rule Added

📋 What's New?

This repository has been added to a Dependency Review rule. We value your feedback - please share your thoughts in our #security_help Slack channel!

🤔 What Does This Mean?

The Dependency Review action will now run on pull requests against the default branch. This tool helps you:

  • Understand dependency changes in your pull requests
  • Review security impacts of dependency updates
  • Make informed decisions about dependency modifications
  • Analyze dependencies in your GitHub Actions workflows

📚 Key Points

  • Informational Only: No action required from developers
  • 🔄 No Workflow Changes: Your current processes remain unchanged
  • 🚫 No Blocking: Pull requests won't be blocked by this review
  • 🛠 Languages: Java, JavaScript, Python, TypeScript, HCL, and Dockerfile
  • 🔄 GitHub Actions Support: Includes analysis of CI/CD pipeline dependencies
  • 🎯 Scope: Only applies to PRs against the default branch

📖 Learn More

For detailed information about Dependency Review, check out the GitHub documentation.

💬 Questions?

Have questions or concerns? Join the conversation in #security_help!

🔔 This is an automated message from the Security Team

samigt avatar Apr 14 '25 12:04 samigt