Deprecate CVE Node scanning repository workflow

Question

Deprecate CVE Node scanning repository workflow

Closed this issue 4 months ago · 0 comments

We currently run both the Sonatype CVE Node scanning workflow and the GitHub Dependency Review Action. I believe that both are not required as the GitHub Action covers CVEs as well as license incompliance (covers a greater set of PR check requirements).