[ITSEC-2280] Fix the dependency review action (#247)

* ITSEC-2280 Add Dependency Review job; Add SBOM signing. * ITSEC-2280 Update CODEOWNERS to include Product Security on .github * ITSEC-2280: Fix the dependency review action Signed-off-by: immutable-art <138187673+immutable-art@users.noreply.github.com> --------- Signed-off-by: immutable-art <138187673+immutable-art@users.noreply.github.com>
immutable · Oct 11, 2024 · 0bb8c01 · 0bb8c01
1 parent 7d73695
commit 0bb8c01
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
@@ -102,6 +102,10 @@ jobs:
       with:
         # Possible values: "critical", "high", "moderate", "low"
         fail-on-severity: critical
+
+        # Address https://github.com/actions/dependency-review-action/issues/456
+        base-ref: ${{ github.event.pull_request.base.sha || github.event.repository.default_branch }}
+        head-ref: ${{ github.event.pull_request.head.sha || github.ref }}
   publish:
     name: Publish to NPM (dry run)
     runs-on: ubuntu-latest