Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Submit gradle-aware dependency information to Github (#5086)
Currently, Github automatically ingests dependency information that is an easy-to-digest form (for example, something like Python's requirements.txt). This PR uses the Github Dependency Submission API to add our projects dependency information as known by Gradle (group id, artifact id, version, etc) to Github. This allows for better dependency graph and code security information. There's potential to use this information in the future to enhance our PR review process, specifically calling out new dependencies (https://github.com/actions/dependency-review-action). https://docs.github.com/en/rest/dependency-graph/dependency-submission https://github.com/gradle/actions/blob/main/dependency-submission/README.md
- Loading branch information