From fc78ffa8fb6deae8bbb7d00b3cb89bd4109c2161 Mon Sep 17 00:00:00 2001
From: Agustin Bettati <bettatiagustin@gmail.com>
Date: Wed, 31 Jan 2024 11:47:23 +0100
Subject: [PATCH] chore: Includes GH actions dependency review in PR checks

---
 .github/workflows/code-health.yml | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/.github/workflows/code-health.yml b/.github/workflows/code-health.yml
index 93fb51c4a1..5e9e540a9e 100644
--- a/.github/workflows/code-health.yml
+++ b/.github/workflows/code-health.yml
@@ -70,6 +70,14 @@ jobs:
           go-version-file: 'go.mod'
       - name: website lint
         run: make tools && make website-lint
+  dependency-review:
+    runs-on: ubuntu-latest
+    if: ${{ github.event_name == 'pull_request' }}
+    steps:
+      - name: 'Checkout Repository'
+        uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11
+      - name: 'Dependency Review'
+        uses: actions/dependency-review-action@4901385134134e04cec5fbe5ddfe3b2c5bd5d976
   shellcheck:
     runs-on: ubuntu-latest
     steps: