try omitting apache

sreya · sreya · commit c5c6ffaf4b51 · 2024-04-16T23:20:06.000Z
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
@@ -910,14 +910,15 @@ jobs:
         id: review
         uses: actions/dependency-review-action@v4
         with:
-          allow-licenses: Apache-2.0, BSD-2-Clause, BSD-3-Clause, CC0-1.0, ISC #, MIT, MIT-0, MPL-2.0
+          #allow-licenses: Apache-2.0, BSD-2-Clause, BSD-3-Clause, CC0-1.0, ISC, MIT, MIT-0, MPL-2.0
+          allow-licenses: BSD-2-Clause, BSD-3-Clause, CC0-1.0, ISC, MIT, MIT-0, MPL-2.0
           license-check: true
           vulnerability-check: false
       - name: 'Report'
         # make sure this step runs even if the previous failed
         if: ${{ failure() && steps.review.conclusion == 'failure' }}
         shell: bash
         env: # store comment HTML data in an environment variable
-          COMMENT: ${{ steps.review.outputs.comment-content }}
-        run: | # do something with the comment:
-          echo "$COMMENT"
+          VULNERABLE_CHANGES: ${{ steps.review.outputs.invalid-license-changes }}
+        run: |
+          echo "$VULNERABLE_CHANGES" | jq
