Pkldoc > com.github.action > com.github.action.actions.Common

DependencyReviewActionInputs0.0.7

Properties
Methods

class DependencyReviewActionInputs

Known subtypes:
Known usages:
All versions:

Properties

link

`repo-token`: (String|Number|Boolean)?

Token for the repository. Can be passed in using {{ secrets.GITHUB_TOKEN }}.
link

`fail-on-severity`: (String|Number|Boolean)?

Don't block PRs below this severity. Possible values are low, moderate, high, critical.
link

`fail-on-scopes`: (String|Number|Boolean)?

Dependency scopes to block PRs on. Comma-separated list. Possible values are 'unknown', 'runtime', and 'development' (e.g. "runtime, development")
link

`base-ref`: (String|Number|Boolean)?

The base git ref to be used for this check. Has a default value when the workflow event is pull_request or pull_request_target. Must be provided otherwise.
link

`head-ref`: (String|Number|Boolean)?

The head git ref to be used for this check. Has a default value when the workflow event is pull_request or pull_request_target. Must be provided otherwise.
link

`config-file`: (String|Number|Boolean)?

A path to the configuration file for the action.
link

`allow-licenses`: (String|Number|Boolean)?

Comma-separated list of allowed licenses (e.g. "MIT, GPL 3.0, BSD 2 Clause")
link

`deny-licenses`: (String|Number|Boolean)?

Comma-separated list of forbidden licenses (e.g. "MIT, GPL 3.0, BSD 2 Clause")
link

`allow-dependencies-licenses`: (String|Number|Boolean)?

Comma-separated list of dependencies in purl format (e.g. "pkg:npm/express, pkg:pypi/pycrypto"). These dependencies will be permitted to use any license, no matter what license policy...
link

`allow-ghsas`: (String|Number|Boolean)?

Comma-separated list of allowed GitHub Advisory IDs (e.g. "GHSA-abcd-1234-5679, GHSA-efgh-1234-5679")
link

`external-repo-token`: (String|Number|Boolean)?

A token for fetching external configuration file if it lives in another repository. It is required if the repository is private
link

`license-check`: (String|Number|Boolean)?

A boolean to determine if license checks should be performed
link

`vulnerability-check`: (String|Number|Boolean)?

A boolean to determine if vulnerability checks should be performed
link

`comment-summary-in-pr`: (String|Number|Boolean)?

Determines if the summary is posted as a comment in the PR itself. Setting this to always or on-failure requires you to give the workflow the write permissions for pull-requests
link

`deny-packages`: (String|Number|Boolean)?

A comma-separated list of package URLs to deny (e.g. "pkg:npm/express, pkg:pypi/pycrypto"). If version specified, only deny matching packages and version; else, deny all regardless of...
link

`deny-groups`: (String|Number|Boolean)?

A comma-separated list of package URLs for group(s)/namespace(s) to deny (e.g. "pkg:npm/express/, pkg:pypi/pycrypto/"). Please note that the group name must be followed by a /.
link

`retry-on-snapshot-warnings`: (String|Number|Boolean)?

Whether to retry on snapshot warnings
link

`retry-on-snapshot-warnings-timeout`: (String|Number|Boolean)?

Number of seconds to wait before stopping snapshot retries.
link

`warn-only`: (String|Number|Boolean)?

When set to true this action will always complete with success, overriding the fail-on-severity parameter.
link

`show-openssf-scorecard`: (String|Number|Boolean)?

Show a summary of the OpenSSF Scorecard scores.
link

`warn-on-openssf-scorecard-level`: (String|Number|Boolean)?

Numeric threshold for the OpenSSF Scorecard score. If the score is below this threshold, the action will warn you.

Methods(show inherited)

link

function

Any.getClass(): Class (pkl.base)Source

Returns the class of this.
link

function

Any.toString(): String (pkl.base)Source

Returns a string representation of this.

This method is used to convert the values of string interpolation expressions to strings.
link

function

Any.ifNonNull<Result>(transform: (NonNull) -> Result): Result? (pkl.base)Source

Returns this |> transform if this is non-null, and null otherwise.

This method is the complement of the ?? operator and the equivalent of an Option type's map and flatMap methods.
link

function

Typed.hasProperty(name: String): Boolean (pkl.base)Source

Tells if this object has a property with the given name.
link

function

Typed.getProperty(name: String): unknown (pkl.base)Source

Returns the value of the property with the given name.

Throws if a property with this name does not exist.
link

function

Typed.getPropertyOrNull(name: String): unknown? (pkl.base)Source

Returns the value of the property with the given name.

Returns null if a property with this name does not exist.
link

function

Typed.toDynamic(): Dynamic (pkl.base)Source

Converts this object to a Dynamic object.
link

function

Typed.toMap(): Map<String, unknown> (pkl.base)Source

Converts this object to a Map.