[ACS-10100][Security] Remove npx usage from CI/CD and shell scripts to mitigate supply chain risks (#4795)

Author: dominikiwanekhyland

.github/actions/before-e2e/action.yml

@@ -6,4 +6,4 @@ runs:
   steps:
     - name: Check content UP
       shell: bash
-      run: ./node_modules/@alfresco/adf-cli/bin/adf-cli check-cs-env --host $BASE_URL -u $ADMIN_EMAIL -p $ADMIN_PASSWORD || exit 1
+      run: npm run ci:check-env || exit 1

.github/actions/publish-libs/action.yml

@@ -29,7 +29,9 @@ runs:
 
     - name: Build Libraries
       shell: bash
-      run: npm ci && npx nx run-many --target=build
+      run: |
+        npm ci
+        npm run ci:build:many
 
     - uses: actions/setup-node@v4
       name: setup GH registry

.github/actions/run-e2e-playwright/action.yml

@@ -30,4 +30,4 @@ runs:
         printf "\nApplication is ready.\n"
 
         echo "Running playwright tests with options ${{ inputs.options }}"
-        npx nx run ${{ inputs.options }}-e2e:e2e
+        E2E_TARGET=${{ inputs.options }} npm run ci:e2e

.github/workflows/pull-request.yml

@@ -55,7 +55,7 @@ jobs:
         run: npm run affected:lint -- --base=origin/develop
       - name: lint all
         if: ${{ github.event_name != 'pull_request' }}
-        run: npx nx run-many --target=lint
+        run: npm run ci:lint
       - run: npm run stylelint
 
   build:
@@ -80,7 +80,7 @@ jobs:
         with:
           name: npm-logs
           path: /home/runner/.npm/_logs/
-      - run: npx nx build aca-playwright-shared
+      - run: npm run ci:build -- aca-playwright-shared
       - run: npm run build -- $BUILD_OPTS
 
       - name: dist cache
@@ -119,7 +119,7 @@ jobs:
 
       - name: Test all
         if: ${{ github.event_name != 'pull_request' }}
-        run: npx nx run-many --target=test --browsers=ChromeHeadless --watch=false $TEST_OPTS
+        run: npm run ci:test -- $TEST_OPTS
 
   e2es-playwright:
     needs: [lint, build, unit-tests]
@@ -203,8 +203,7 @@ jobs:
         uses: ./.github/actions/before-e2e
 
       - name: Before playwright
-        shell: bash
-        run: npx playwright install chromium
+        run: npm run ci:playwright:install
 
       - uses: ./.github/actions/run-e2e-playwright
         with:

.github/workflows/run-e2e-with-env.yml

@@ -45,7 +45,7 @@ jobs:
           cache: 'npm'
       - uses: ./.github/actions/before-install
       - run: npm ci
-      - run: npx nx build aca-playwright-shared
+      - run: npm run ci:build -- aca-playwright-shared
       - run: npm run build -- $BUILD_OPTS
 
       - name: dist cache
@@ -128,12 +128,12 @@ jobs:
         uses: ./.github/actions/before-e2e
 
       - name: Before playwright
-        shell: bash
-        run: npx playwright install chromium
+        run: npm run ci:playwright:install
 
       - uses: ./.github/actions/run-e2e-playwright
         with:
           options: "${{ matrix.e2e-suites.name }}"
           artifact-name: ${{ matrix.e2e-suites.name }}
           test-runner: playwright
+
       - uses: ./.github/actions/after-e2e

.husky/pre-commit

@@ -1,4 +1 @@
-#!/usr/bin/env sh
-. "$(dirname -- "$0")/_/husky.sh"
-
-npx lint-staged
+lint-staged

e2e/playwright/authentication/project.json

@@ -7,7 +7,7 @@
     "e2e": {
       "executor": "nx:run-commands",
       "options": {
-        "commands": ["npx playwright test --config=e2e/playwright/authentication/playwright.config.ts"]
+        "commands": ["playwright test --config=e2e/playwright/authentication/playwright.config.ts"]
       },
       "configurations": {
         "production": {

e2e/playwright/copy-move-actions/project.json

@@ -7,7 +7,7 @@
     "e2e": {
       "executor": "nx:run-commands",
       "options": {
-        "commands": ["npx playwright test --config=e2e/playwright/copy-move-actions/playwright.config.ts"]
+        "commands": ["playwright test --config=e2e/playwright/copy-move-actions/playwright.config.ts"]
       },
       "configurations": {
         "production": {

e2e/playwright/create-actions/project.json

@@ -7,7 +7,7 @@
     "e2e": {
       "executor": "nx:run-commands",
       "options": {
-        "commands": ["npx playwright test --config=e2e/playwright/create-actions/playwright.config.ts"]
+        "commands": ["playwright test --config=e2e/playwright/create-actions/playwright.config.ts"]
       },
       "configurations": {
         "production": {

e2e/playwright/delete-actions/project.json

@@ -7,7 +7,7 @@
     "e2e": {
       "executor": "nx:run-commands",
       "options": {
-        "commands": ["npx playwright test --config=e2e/playwright/delete-actions/playwright.config.ts"]
+        "commands": ["playwright test --config=e2e/playwright/delete-actions/playwright.config.ts"]
       },
       "configurations": {
         "production": {