From 95b9d4fb2134ea31f206e3f2cb97079a6be8ebc2 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Ois=C3=ADn?= Date: Tue, 20 May 2025 15:12:52 +0100 Subject: [PATCH 1/2] Authenticate-GitHub-to-enable-dependency-submission-workflow: add customisation for maven-submission --- .github/workflows/maven-submission.yml | 21 +++++++++++++++++++++ 1 file changed, 21 insertions(+) create mode 100644 .github/workflows/maven-submission.yml diff --git a/.github/workflows/maven-submission.yml b/.github/workflows/maven-submission.yml new file mode 100644 index 00000000..60309309 --- /dev/null +++ b/.github/workflows/maven-submission.yml @@ -0,0 +1,21 @@ +name: Maven Dependency Submission +on: + push: + branches: + - main + pull_request: + branches: + - main + +permissions: + packages: write + +jobs: + submit-maven: + runs-on: ubuntu-latest + steps: + - name: Maven Dependency Tree Dependency Submission + uses: advanced-security/maven-dependency-submission-action@v4 + with: + token: ${{ secrets.GITHUB_TOKEN }} + \ No newline at end of file From 72dcb6db73306a397f7d8b7056b7660281977ffc Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Ois=C3=ADn?= Date: Tue, 20 May 2025 15:24:16 +0100 Subject: [PATCH 2/2] Authenticate-GitHub-to-enable-dependency-submission-workflow: check out the repo --- .github/workflows/maven-submission.yml | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/.github/workflows/maven-submission.yml b/.github/workflows/maven-submission.yml index 60309309..55ee0bfa 100644 --- a/.github/workflows/maven-submission.yml +++ b/.github/workflows/maven-submission.yml @@ -14,8 +14,10 @@ jobs: submit-maven: runs-on: ubuntu-latest steps: + - name: Checkout repository + uses: actions/checkout@v4 + - name: Maven Dependency Tree Dependency Submission uses: advanced-security/maven-dependency-submission-action@v4 with: - token: ${{ secrets.GITHUB_TOKEN }} - \ No newline at end of file + token: ${{ secrets.GITHUB_TOKEN }} \ No newline at end of file