(feat) O3-5556: Add OWASP Dependency Check workflow#249
Open
kanchana404 wants to merge 1 commit intoopenmrs:mainfrom
Open
(feat) O3-5556: Add OWASP Dependency Check workflow#249kanchana404 wants to merge 1 commit intoopenmrs:mainfrom
kanchana404 wants to merge 1 commit intoopenmrs:mainfrom
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Requirements
This PR has a title that briefly describes the work done including the ticket number. If there is a ticket, make sure your PR title includes a conventional commit label. See existing PR titles for inspiration.
My work is based on designs, which are linked or shown either in the Jira ticket or the description below.
My work includes tests or is validated by existing tests.
Summary
Adds OWASP Dependency Check workflow to scan frontend dependencies in CI. Based on the updated shared workflow from openmrs/openmrs-contrib-gha-workflows#25.
Reference implementation: openmrs/openmrs-esm-patient-management#2410
Results will be available at: https://openmrs.github.io/openmrs-contrib-dependency-vulnerability-dashboard/
Screenshots
N/A (no UI changes — this is a CI workflow addition)
Related Issue
https://openmrs.atlassian.net/browse/O3-5556
Other
N/A