From 709ace5d4f25aac8c25fed298f4fac90a05cd370 Mon Sep 17 00:00:00 2001
From: Simon Vieille <simon@deblan.fr>
Date: Sun, 4 Dec 2022 22:25:04 +0100
Subject: [PATCH] CI: add dependency check

---
 .woodpecker.yml | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/.woodpecker.yml b/.woodpecker.yml
index 354819e..29e70b2 100644
--- a/.woodpecker.yml
+++ b/.woodpecker.yml
@@ -30,6 +30,12 @@ pipeline:
     when:
       event: [pull_request]
 
+  dependency_check:
+    image: registry.gitlab.com/gitlab-ci-utils/docker-dependency-check:latest
+    commands:
+      - /usr/share/dependency-check/bin/dependency-check.sh --scan "./" --format ALL --project "$CI_REPO" --failOnCVSS 0
+      - if [ $(grep -c "vulnerabilities" dependency-check-report.json) -gt 0 ]; then exit 2; fi
+
   package:
     image: gitnet.fr/deblan/devenv
     volumes: