From d4822694a1014ca458bb2579e559724e8d9f0867 Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Mon, 22 Dec 2025 02:29:53 +0000 Subject: [PATCH 1/2] Initial plan From 955041844550b7874df13b3d54cf4a9915fc959d Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Mon, 22 Dec 2025 02:32:11 +0000 Subject: [PATCH 2/2] chore: update prettier workflow to use pnpm instead of npm Co-authored-by: yanglbme <21008209+yanglbme@users.noreply.github.com> --- .github/workflows/prettier.yml | 10 +++++++--- 1 file changed, 7 insertions(+), 3 deletions(-) diff --git a/.github/workflows/prettier.yml b/.github/workflows/prettier.yml index 5ecb2cab3e399..1f13a457311bf 100644 --- a/.github/workflows/prettier.yml +++ b/.github/workflows/prettier.yml @@ -13,7 +13,7 @@ jobs: # --------------------------------------------------------- # SAFETY CHECK: # Only run for PRs from the SAME repository. - # Fork PRs are skipped entirely to prevent RCE via npm install. + # Fork PRs are skipped entirely to prevent RCE via pnpm install. # --------------------------------------------------------- if: ${{ github.event.pull_request.head.repo.fork == false }} permissions: @@ -30,15 +30,19 @@ jobs: uses: actions/setup-node@v4 with: node-version: 18 + - name: Install pnpm + uses: pnpm/action-setup@v4 + with: + version: 10.25.0 - name: Install Dependencies - run: npm install + run: pnpm install - name: Run prettier run: | git config --global core.quotepath off changed_files=$(git diff --name-only "${{ github.event.pull_request.base.sha }}" | grep -E '\.js$|\.ts$|\.php$|\.sql$|\.md$' || true) if [ -n "$changed_files" ]; then echo "Running prettier on the changed files" - echo "$changed_files" | xargs -d '\n' npx prettier --write + echo "$changed_files" | xargs -d '\n' pnpm exec prettier --write else echo "No matching files to run prettier on." fi