shoothzj opened a new pull request, #4330: URL: https://github.com/apache/bookkeeper/pull/4330
### Motivation This PR aims to enhance the security posture of our project by automating the OWASP dependency checks. With increasing dependency updates and potential vulnerabilities, having a daily automated check ensures timely detection and mitigation of security risks. ### Changes - Added a new GitHub Actions workflow (`owasp-daily-build.yml`) that triggers an OWASP dependency check every day at 00:00 UTC. - Updated the OWASP dependency check Maven plugin version in `pom.xml` from `8.0.2` to `9.1.0` to utilize the latest features and improvements for our security checks. - Made a minor grammatical correction in the existing workflow file (`bk-ci.yml`) for better readability. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
