build: TRG-8-03 enable TruffleHog secrets scan #2

	name: "3rd Party dependency check (Eclipse Dash)"

	on:
	workflow_dispatch:
	push:
	branches:
	- main
	pull_request:
	branches:
	- main

	permissions:
	contents: write

	jobs:
	check-dependencies:
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@v4

	- name: generate dependency list
	run: ./gradlew allDependencies \| grep -Poh "(?<=\s)[\w.-]+:[\w.-]+:[^:\s\[\]]+" \| sort \| uniq > dependency-list

	- name: Run dash
	id: run-dash
	uses: eclipse-tractusx/sig-infra/.github/actions/run-dash@main
	with:
	dash_input: dependency-list
	dependencies_file: DEPENDENCIES
	fail_on_out_of_date: true
	fail_on_rejected: true
	fail_on_restricted: false

	- if: failure()
	run: cat DEPENDENCIES

Provide feedback