From 1d3c9745959a7cadeaadbc5117b548f88fc89e77 Mon Sep 17 00:00:00 2001
From: cyrinenajar <105717163+cyrinenajar@users.noreply.github.com>
Date: Mon, 12 Dec 2022 13:19:31 +0000
Subject: [PATCH] Enable Dependency reviewer

---
 .github/workflows/dependency_enforcement.yml | 20 ++++++++++++++++++++
 1 file changed, 20 insertions(+)
 create mode 100644 .github/workflows/dependency_enforcement.yml

diff --git a/.github/workflows/dependency_enforcement.yml b/.github/workflows/dependency_enforcement.yml
new file mode 100644
index 00000000..b3957815
--- /dev/null
+++ b/.github/workflows/dependency_enforcement.yml
@@ -0,0 +1,20 @@
+# For most projects, this workflow file will not need changing; you simply need
+# to commit it to your repository.
+#
+# Reach out on Slack at '#security-support' to get help.
+# Link to the action: https://github.com/actions/dependency-review-action
+
+name: "Dependency Review"
+on: [pull_request]
+permissions:
+  contents: read
+jobs:
+  dependency-review:
+    runs-on: ubuntu-latest
+    steps:
+      - name: "Checkout Repository"
+        uses: actions/checkout@v3
+      - name: Dependency Review
+        uses: actions/dependency-review-action@v3
+        with:
+          fail-on-severity: critical