Bump actions/dependency-review-action from 4.8.3 to 4.9.0 #65

	name: 'Dependency Review'

	on:
	workflow_dispatch:
	pull_request:
	branches:
	- 'main'

	permissions:
	contents: read

	jobs:
	dependency-review:
	runs-on: ubuntu-latest
	steps:
	- name: Harden Runner
	uses: step-security/harden-runner@a90bcbc6539c36a85cdfeb73f7e2f433735f215b # v2.15.0
	with:
	egress-policy: audit

	- name: 'Checkout Repository'
	uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
	with:
	persist-credentials: false

	- name: 'Dependency Review'
	uses: actions/dependency-review-action@2031cfc080254a8a887f58cffee85186f0e49e48 # v4.9.0
	with:
	allow-licenses: Apache-2.0, MIT, BSD-3-Clause, CC-BY-SA-4.0

Provide feedback