Skip to content

chore(ci): check licenses of dependencies on PRs #2

chore(ci): check licenses of dependencies on PRs

chore(ci): check licenses of dependencies on PRs #2

name: Dependency Review
on:
merge_group:
types: [checks_requested]
pull_request:
branches:
- main
permissions:
contents: read
pull-requests: write
jobs:
depcheck:
runs-on: ubuntu-latest
container:
image: docker.mirror.hashicorp.services/hashicorp/jsii-terraform
env:
CHECKPOINT_DISABLE: "1"
timeout-minutes: 60
strategy:
fail-fast: false
matrix:
package: [
cdktf,
# cdktf-cli,
"@cdktf/hcl2json",
"@cdktf/hcl2cdk",
"@cdktf/provider-schema",
"@cdktf/provider-generator",
"@cdktf/commons",
# "@cdktf/cli-core",
]
steps:
- uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
- name: "Run Depcheck"
run: |
npx lerna exec --scope '${{ matrix.package }}' -- npx -y depcheck --ignores="@types/*,jsii,jsii-pacmak,jsii-docgen,yoga-layout-prebuilt,eslint,jest,tsc-files,typescript,esbuild,esbuild-jest,graphology-types"
license:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
- name: Check dependency licenses
uses: actions/dependency-review-action@0c155c5e8556a497adf53f2c18edabf945ed8e70 # v4.3.2
with:
config-file: ./.github/dependency-review-config.yml