|
1 | 1 | --- |
2 | 2 | name: Dependency review |
3 | 3 |
|
4 | | -on: |
| 4 | +on: # yamllint disable-line rule:truthy |
5 | 5 | merge_group: |
6 | 6 | types: |
7 | 7 | - checks_requested |
|
27 | 27 | - name: Apply standard cisagov job preamble |
28 | 28 | uses: cisagov/action-job-preamble@v1 |
29 | 29 | with: |
| 30 | + check_github_status: "true" |
| 31 | + # This functionality is poorly implemented and has been |
| 32 | + # causing a lot of problems due to the MITM implementation |
| 33 | + # hogging or leaking memory, so we disable it for now. |
| 34 | + monitor_permissions: "false" |
| 35 | + output_workflow_context: "true" |
30 | 36 | # Use a variable to specify the permissions monitoring |
31 | 37 | # configuration. By default this will yield the |
32 | 38 | # configuration stored in the cisagov organization-level |
|
41 | 47 | # monitoring configuration *does not* require you to modify |
42 | 48 | # this workflow. |
43 | 49 | permissions_monitoring_config: ${{ vars.ACTIONS_PERMISSIONS_CONFIG }} |
44 | | - - id: github-status |
45 | | - name: Check GitHub status |
46 | | - uses: crazy-max/ghaction-github-status@v4 |
47 | | - - id: dump-context |
48 | | - name: Dump context |
49 | | - uses: crazy-max/ghaction-dump-context@v2 |
50 | 50 | dependency-review: |
51 | 51 | name: Dependency review |
52 | 52 | needs: |
|
59 | 59 | - name: Apply standard cisagov job preamble |
60 | 60 | uses: cisagov/action-job-preamble@v1 |
61 | 61 | with: |
| 62 | + # This functionality is poorly implemented and has been |
| 63 | + # causing a lot of problems due to the MITM implementation |
| 64 | + # hogging or leaking memory, so we disable it for now. |
| 65 | + monitor_permissions: "false" |
62 | 66 | # Use a variable to specify the permissions monitoring |
63 | 67 | # configuration. By default this will yield the |
64 | 68 | # configuration stored in the cisagov organization-level |
|
0 commit comments