fix: address Dependabot security alerts #505
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: CI for reusable Actions | |
| on: | |
| - pull_request | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.ref }} | |
| cancel-in-progress: true | |
| jobs: | |
| ci_lint_and_build_artifacts: | |
| runs-on: ARM64 | |
| permissions: {} | |
| outputs: | |
| committed: ${{ steps.commit.outputs.committed }} | |
| steps: | |
| - name: Generate token | |
| uses: actions/create-github-app-token@v2 | |
| id: generate_token | |
| with: | |
| app-id: ${{ secrets.GH_ACTIONS_HELPER_APP_ID }} | |
| private-key: ${{ secrets.GH_ACTIONS_HELPER_PK }} | |
| - uses: actions/checkout@v4 | |
| with: | |
| token: ${{ steps.generate_token.outputs.token }} | |
| ref: ${{ github.event.pull_request.head.ref }} | |
| - uses: actions/setup-node@v4 | |
| with: | |
| node-version-file: '.nvmrc' | |
| cache: 'npm' | |
| registry-url: 'https://npm.pkg.github.com' | |
| - run: npm install | |
| - name: Lint | |
| run: npm run lint:fix --workspaces | |
| - name: Build Artifacts | |
| run: npm run build --workspaces | |
| - uses: EndBug/add-and-commit@v9 | |
| id: commit | |
| with: | |
| add: -A | |
| message: ci - fix linting / update build artifacts | |
| ci_test_actions: | |
| needs: ci_lint_and_build_artifacts | |
| if: ${{ needs.ci_lint_and_build_artifacts.outputs.committed == 'false' }} | |
| runs-on: ARM64 | |
| permissions: | |
| contents: read | |
| steps: | |
| - name: Checkout | |
| id: checkout | |
| uses: actions/checkout@v4 | |
| - uses: actions/setup-node@v4 | |
| with: | |
| node-version-file: '.nvmrc' | |
| cache: 'npm' | |
| registry-url: 'https://npm.pkg.github.com' | |
| - run: npm install | |
| - name: Run Tests | |
| run: npm run test |