aminet Supply Chain Review

Version updated for https://github.com/gorira-tatsu/aminet to version v0.4.0.

  • This action is used across all versions by 0 repositories.

Action Type

This is a Composite action.

Go to the GitHub Marketplace to find the latest changes.

Action Summary

The aminet GitHub Action and CLI tool automates the analysis and review of npm and Python dependencies to identify risks such as vulnerabilities, license issues, and supply chain concerns. It simplifies dependency management by generating detailed security and compliance reports, which can be output as terminal logs, JSON files, SBOMs, or pull request comments. Designed for integration into GitHub workflows, it enables teams to perform automated dependency reviews directly within pull requests, focusing on changes to direct dependencies and ensuring secure and compliant software development practices.

What’s Changed

aminet 0.4.0

npm: https://www.npmjs.com/package/aminet

Install

npx aminet@0.4.0 --help
npm install -g aminet

GitHub Action

uses: gorira-tatsu/aminet@v0.4.0

npmjs.org is the canonical package registry for aminet.

What’s Changed

Full Changelog: https://github.com/gorira-tatsu/aminet/compare/v0.3.0...v0.4.0