Add dependency review step to workflows

.github/workflows/build_pull_request.yml

@@ -5,6 +5,9 @@ on:
       - '**.md'
       - 'app/src/main/res/**/strings.xml'
 
+permissions:
+  contents: read
+
 jobs:
   build:
     name: Build app
@@ -12,11 +15,14 @@ jobs:
 
     steps:
       - name: Clone repo
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
 
       - name: Validate Gradle Wrapper
         uses: gradle/wrapper-validation-action@v1
 
+      - name: Dependency Review
+        uses: actions/dependency-review-action@v1
+
       - name: Set up JDK 11
         uses: actions/setup-java@v1
         with:

.github/workflows/build_push.yml

@@ -6,6 +6,9 @@ on:
     tags:
       - v*
 
+permissions:
+  contents: read
+
 jobs:
   build:
     name: Build app
@@ -19,11 +22,14 @@ jobs:
           all_but_latest: true
 
       - name: Clone repo
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
 
       - name: Validate Gradle Wrapper
         uses: gradle/wrapper-validation-action@v1
 
+      - name: Dependency Review
+        uses: actions/dependency-review-action@v1
+
       - name: Set up JDK 11
         uses: actions/setup-java@v1
         with: