From f9b25814647a023cdb3cc9c97676a96730824dbd Mon Sep 17 00:00:00 2001
From: Harsh Shandilya <me@msfjarvis.dev>
Date: Sat, 9 Sep 2023 23:33:26 +0530
Subject: [PATCH] chore(ci): add GHA dependency-review-action

---
 .github/workflows/ci.yml | 16 +++++++++++++++-
 1 file changed, 15 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 7819d962..36fa609b 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -43,10 +43,24 @@ jobs:
           name: Test report
           path: android/build/reports
 
+  dependency-review:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+
+      - name: Dependency Review
+        uses: actions/dependency-review-action@v3
+        with:
+          base-ref: refs/heads/main
+          head-ref: ${{ github.ref }}
+
   deploy-release-snapshot:
     runs-on: ubuntu-latest
     if: "github.event_name == 'push' && github.event.ref == 'refs/heads/main'"
-    needs: [ "check" ]
+    needs:
+      - check
+      - dependency-review
     steps:
     - name: Checkout repository
       uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0