maven-verify.yml: allow switching off advanced-security dependency su…

…bmission (#45) This is because the plugin might break and is not critical for verification builds.
seeburger-ag · Feb 28, 2024 · cfc07f9 · cfc07f9
1 parent dafff60
commit cfc07f9
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/.github/workflows/maven-verify.yml b/.github/workflows/maven-verify.yml
@@ -33,6 +33,7 @@ jobs:
     - name: Update dependency graph
       uses: advanced-security/maven-dependency-submission-action@73da25169f2ac4d336320399ba58070deebc1208
       # fails with read-only token on PRs, so only run it on main pushes
-      if: ${{ github.ref == 'refs/heads/main' && github.event_name == 'push' }}
+      # if DISABLE_MAVEN_DEPENDENCY_SUBMISSION is set to true, skip this step
+      if: ${{ github.ref == 'refs/heads/main' && github.event_name == 'push' && vars.DISABLE_MAVEN_DEPENDENCY_SUBMISSION != 'true' }}
       with:
         directory: tests/