From ee9deebc72eeaec33a5f0634ec3628bbc12988bb Mon Sep 17 00:00:00 2001 From: DominicGBauer Date: Wed, 30 Oct 2024 14:54:27 +0200 Subject: [PATCH 1/2] chore: add audit check --- .github/workflows/audit.yaml | 22 ++++++++++++++++++++++ audit-ci.jsonc | 5 +++++ 2 files changed, 27 insertions(+) create mode 100644 .github/workflows/audit.yaml create mode 100644 audit-ci.jsonc diff --git a/.github/workflows/audit.yaml b/.github/workflows/audit.yaml new file mode 100644 index 000000000..ebf56d875 --- /dev/null +++ b/.github/workflows/audit.yaml @@ -0,0 +1,22 @@ +name: Audit + +on: + push: + +concurrency: + group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }} + cancel-in-progress: true + +jobs: + audit: + runs-on: ubuntu-latest + steps: + - name: Checkout Repo + uses: actions/checkout@v4 + - uses: pnpm/action-setup@v4 + name: Install pnpm + with: + version: 9 + run_install: false + - name: Audit for vulnerabilities + run: npx audit-ci@^6 --config ./audit-ci.jsonc diff --git a/audit-ci.jsonc b/audit-ci.jsonc new file mode 100644 index 000000000..ae2259906 --- /dev/null +++ b/audit-ci.jsonc @@ -0,0 +1,5 @@ +{ + "critical": true, + "package-manager": "auto", + "registry": "https://registry.npmjs.org" +} From 4c604e97cfbb064ec3c9c2815e22c58c0715ac29 Mon Sep 17 00:00:00 2001 From: DominicGBauer Date: Wed, 30 Oct 2024 15:24:51 +0200 Subject: [PATCH 2/2] chore: update to use 7 --- .github/workflows/audit.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/audit.yaml b/.github/workflows/audit.yaml index ebf56d875..686da3637 100644 --- a/.github/workflows/audit.yaml +++ b/.github/workflows/audit.yaml @@ -19,4 +19,4 @@ jobs: version: 9 run_install: false - name: Audit for vulnerabilities - run: npx audit-ci@^6 --config ./audit-ci.jsonc + run: npx audit-ci@^7 --config ./audit-ci.jsonc