Skip to content
shield

GitHub Action

sbt-dependency-check

v1.0 Latest version

sbt-dependency-check

shield

sbt-dependency-check

Github action to execute sbt-dependency-check as part of a github workflow

Installation

Copy and paste the following snippet into your .yml file.

              

- name: sbt-dependency-check

uses: albuch/[email protected]

Learn more about this action in albuch/sbt-dependency-check-action

Choose a version

sbt-dependency-check-action

A Github Action to parse DependencyCheck JSON reports, print the found vulnerabilities and fail the build if a vulnerability was found.

Usage

The Action takes one configuration parameter:

jsonReportPath

The path to the JSON report file of DependencyCheck. For SBT projects using the default configuration of sbt-dependency-check the path is target/scala-<version>/sbt-1.0/dependency-check-report.json.

Example

jobs:
  test:
    steps:
      - name: DependencyCheck
        run: sbt -v -Dfile.encoding=UTF-8 dependencyCheck
      - name: Print DependencyCheck Result
        uses: albuch/[email protected]
        with:
          jsonReportPath: "target/scala-2.12/sbt-1.0/dependency-check-report.json"