Dependency Updates #7
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Dependency Updates | |
| on: | |
| schedule: | |
| - cron: '0 0 * * 1' # Weekly on Mondays | |
| workflow_dispatch: | |
| jobs: | |
| update-dependencies: | |
| name: Update Dependencies | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@v4 | |
| with: | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Setup Node.js | |
| uses: actions/setup-node@v4 | |
| with: | |
| node-version: '20' | |
| cache: 'npm' | |
| - name: Update dependencies | |
| run: | | |
| npm update | |
| npm audit fix --audit-level=moderate | |
| continue-on-error: true | |
| - name: Create Pull Request | |
| uses: peter-evans/create-pull-request@v6 | |
| with: | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| commit-message: 'chore: update dependencies' | |
| title: 'chore: update dependencies' | |
| body: | | |
| This PR updates the project dependencies to their latest versions. | |
| - Updated npm packages to latest compatible versions | |
| - Applied security fixes where available | |
| Please review the changes and test thoroughly before merging. | |
| branch: dependency-updates | |
| delete-branch: true |