Skip to content

Commit

Permalink
AAP-18703: run npm audit on wisdom-service react app (#778)
Browse files Browse the repository at this point in the history 
* AAP-18703: run npm audit on wisdom-service react app

* Update dependencies to protect from vulnerabilities
  • Loading branch information
@hasys
hasys authored Jan 10, 2024
1 parent ca70380 commit 05475d1
Show file tree
Hide file tree
Showing 3 changed files with 98 additions and 123 deletions.
43 changes: 43 additions & 0 deletions .github/workflows/npm_audit.yml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,43 @@
name: Admin Portal - npm-audit

on:
push:
branches:
- main
paths:
- ansible_wisdom_console_react/**
pull_request:
branches:
- main
paths:
- ansible_wisdom_console_react/**

jobs:
lint:
runs-on: ubuntu-latest

env:
WORKING_DIRECTORY: ./ansible_wisdom_console_react

steps:
- name: Checkout commit
uses: actions/checkout@v3

- name: Use Node.js
uses: actions/setup-node@v3
with:
node-version: '20.x'
cache: 'npm'
cache-dependency-path: ${{env.WORKING_DIRECTORY}}/package-lock.json

- name: Install Dependencies
run: npm ci
working-directory: ${{env.WORKING_DIRECTORY}}

- name: Run npm audit
uses: oke-py/npm-audit-action@v2
with:
audit_level: low
github_token: ${{ secrets.GITHUB_TOKEN }}
create_issues: false
working_directory: ${{env.WORKING_DIRECTORY}}
172 changes: 52 additions & 120 deletions ansible_wisdom_console_react/package-lock.json
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

6 changes: 3 additions & 3 deletions ansible_wisdom_console_react/package.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -25,9 +25,9 @@
"@testing-library/user-event": "^14.0.0",
"@types/react": "^18.2.21",
"@types/react-dom": "^18.2.7",
"@types/react-test-renderer": "^18.0.1",
"@typescript-eslint/eslint-plugin": "^5.62.0",
"@typescript-eslint/parser": "^5.0.0",
"@types/react-test-renderer": "^18.0.1",
"axios": "^1.5.0",
"babel-jest": "^29.7.0",
"babel-loader": "^8.2.3",
Expand Down Expand Up @@ -66,13 +66,13 @@
"react-dev-utils": "^12.0.1",
"react-test-renderer": "^18.2.0",
"resolve": "^1.20.0",
"resolve-url-loader": "^4.0.0",
"resolve-url-loader": "^5.0.0",
"sass-loader": "^12.3.0",
"semver": "^7.5.4",
"source-map-loader": "^3.0.0",
"style-loader": "^3.3.1",
"tslib": "^2.6.2",
"ts-jest": "^29.1.1",
"tslib": "^2.6.2",
"typescript": "^5.1.6",
"webpack": "^5.64.4",
"webpack-dev-server": "^4.6.0",
Expand Down

1 comment on commit 05475d1

@github-actions
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more. 

ClamAV Virus Definition DB Files:
----
total 227912
-rw-r--r--  1 root root 170479789 Jan 10 06:07 main.cvd
-rw-r--r--  1 root root        69 Jan 10 06:07 freshclam.dat
-rw-r--r--  1 root root  62581889 Jan 10 06:07 daily.cvd
-rw-r--r--  1 root root    291965 Jan 10 06:07 bytecode.cvd
drwxr-xr-x 16 root root      4096 Jan 10 17:50 ..
drwxr-xr-x  2 root root      4096 Jan 10 17:50 .
----
File: /var/lib/clamav/bytecode.cvd
Build time: 22 Feb 2023 16:33 -0500
Version: 334
Signatures: 91
Functionality level: 90
Builder: anvilleg
MD5: 0464067a252b1e937012ad34e811065f
Digital signature: urVBCbhJcz8v6i1E6HedDwa8TxBHnJknqg7SE+6JWBtovATpw8MWwS+kvGAi//x5u0LIFwhPvUsgEBBeFiZE0QTTWazOhJ/LfKJK+nODqha6cTvaQdKl2rSbEOv6grv7UONV8eKi383Wv07wfSNYp+lPNpt0QmejKb1TMHAYTA
Verification OK.
----
File: /var/lib/clamav/daily.cvd
Build time: 09 Jan 2024 04:45 -0500
Version: 27149
Signatures: 2050608
Functionality level: 90
Builder: raynman
MD5: a3e528679aacc2f36b569c44cde0793f
Digital signature: phuA0F7/xW+HljqYvATfuiqMv3DFBd3BR9pttViJKw9tdGd5MOW4jMGouPvy65J3pCmAEkdmFMQP0gN0ttroJ2y7tpMjblXsf1MfMqdqa8tNsHHNdvI1waO+LMvwAM53OBvveg3YpZtbZ4odNK25J1kYNtRXq1cys12gR3hUsuf
Verification OK.
----
File: /var/lib/clamav/main.cvd
Build time: 16 Sep 2021 08:32 -0400
Version: 62
Signatures: 6647427
Functionality level: 90
Builder: sigmgr
MD5: 137eccce31aacb21b5a98bb8c21cefd6
Digital signature: twaJBls8V5q64R7QY10AatEtPNuPWoVoxTaNO1jpBg7s5jIMMXpitgG1000YLp6rb0TWkEKjRqxneGTxuxWaWm7XBjsgwX2BRWh/y4fhs7uyImdKRLzQ5y8e2EkSChegF/i8clqfn+1qetq9j4gbktJ3JZpOXPoHlyr2Dv9S/Bg
Verification OK.
----
Scanning Results:
ClamAV 1.0.4/27149/Tue Jan  9 09:45:13 2024
LibClamAV Warning: Max file-size was set to 4194304000 bytes. Unfortunately, scanning files greater than 2147483647 bytes (2 GiB - 1) is not supported.

----------- SCAN SUMMARY -----------
Known viruses: 8682481
Engine version: 1.0.4
Scanned directories: 30949
Scanned files: 190131
Infected files: 0
Data scanned: 6477.34 MB
Data read: 3410.41 MB (ratio 1.90:1)
Time: 2097.585 sec (34 m 57 s)
Start Date: 2024:01:10 17:52:54
End Date:   2024:01:10 18:27:51

Please sign in to comment.