Audit (release) #287

	name: Audit (release)
	on:
	schedule:
	- cron: "0 3 * * *"
	workflow_dispatch: ~

	permissions: read-all

	jobs:
	v2:
	name: v2
	runs-on: ubuntu-22.04
	steps:
	- name: Harden runner
	uses: step-security/harden-runner@f086349bfa2bd1361f7909c78558e816508cdc10 # v2.8.0
	with:
	disable-sudo: true
	egress-policy: block
	allowed-endpoints: >
	actions-results-receiver-production.githubapp.com:443
	api.github.com:443
	artifactcache.actions.githubusercontent.com:443
	ghcr.io:443
	github.com:443
	gitlab.com:443
	nodejs.org:443
	objects.githubusercontent.com:443
	registry.npmjs.org:443
	- name: Checkout repository
	uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
	with:
	ref: v2
	- name: Install Node.js
	uses: actions/setup-node@8f152de45cc393bb48ce5d89d36b731f54556e65 # v4.0.0
	with:
	cache: npm
	node-version-file: .nvmrc
	- name: Install dependencies
	run: npm clean-install
	- name: Audit production npm dependencies
	run: npm run audit:runtime

Provide feedback