Bump actions/dependency-review-action from 2.3.0 to 2.4.0 (#1076)

* Bump actions/dependency-review-action from 2.3.0 to 2.4.0 Bumps [actions/dependency-review-action](https://github.com/actions/dependency-review-action) from 2.3.0 to 2.4.0. - [Release notes](https://github.com/actions/dependency-review-action/releases) - [Commits](actions/dependency-review-action@2843194...375c537) --- updated-dependencies: - dependency-name: actions/dependency-review-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> * Update depsreview.yml Signed-off-by: asraa <asraa@google.com> Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: asraa <asraa@google.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: asraa <asraa@google.com>
sigstore · Sep 26, 2022 · 5ebde78 · 5ebde78
1 parent 851ee7e
commit 5ebde78
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/.github/workflows/depsreview.yml b/.github/workflows/depsreview.yml
@@ -25,4 +25,4 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3
       - name: 'Dependency Review'
-        uses: actions/dependency-review-action@284319451007d5ba938e4afb047f602d7f2cd6c6 # v2.3.0
+        uses: actions/dependency-review-action@375c5370086bfff256c37f8beec0f437e2e72ae1 # v2.4.0