-
Notifications
You must be signed in to change notification settings - Fork 6
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #85 from mrsteele/feature/githubActions
fix: resolving security issues
- Loading branch information
Showing
8 changed files
with
3,909 additions
and
44 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,101 @@ | ||
| name: Main | ||
| on: push | ||
|
|
||
| # TODO - Need to not repeat the checkout and setup node steps... | ||
|
|
||
| jobs: | ||
| # Set the job key. The key is displayed as the job name | ||
| # when a job name is not provided | ||
| lint: | ||
| runs-on: ubuntu-latest | ||
| steps: | ||
| - name: 🛑 Cancel Previous Runs | ||
| uses: styfle/cancel-workflow-action@0.6.0 | ||
| with: | ||
| access_token: ${{ secrets.GITHUB_TOKEN }} | ||
| - name: Checkout | ||
| uses: actions/checkout@v2 | ||
| with: | ||
| fetch-depth: 0 | ||
| - name: Setup Node.js | ||
| uses: actions/setup-node@v2 | ||
| with: | ||
| node-version: 12 | ||
| - uses: actions/checkout@v2 | ||
| - name: Install dependencies | ||
| run: npm i | ||
| - name: Check Security | ||
| run: npm audit | ||
| - uses: goto-bus-stop/standard-action@v1 | ||
| with: | ||
| # optionally select a different, standard-like linter | ||
| # linter: semistandard | ||
|
|
||
| # optionally select a different eslint formatter for the log output, default 'stylish' | ||
| # formatter: tap | ||
|
|
||
| # limit the files to lint, default '**/*.js' | ||
| # files: src/*.js | ||
|
|
||
| # show errors in the the github diff UI | ||
| annotate: true | ||
|
|
||
| # Allow the action to add lint errors to the github diff UI | ||
| env: | ||
| GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}} | ||
| test: | ||
| name: Test Node v${{ matrix.node }} | ||
| runs-on: ubuntu-18.04 | ||
| strategy: | ||
| matrix: | ||
| node: [ '10', '12', '14' ] | ||
| steps: | ||
| - name: 🛑 Cancel Previous Runs | ||
| uses: styfle/cancel-workflow-action@0.6.0 | ||
| with: | ||
| access_token: ${{ secrets.GITHUB_TOKEN }} | ||
| - name: Checkout | ||
| uses: actions/checkout@v2 | ||
| with: | ||
| fetch-depth: 0 | ||
| - name: Setup Node.js | ||
| uses: actions/setup-node@v2 | ||
| with: | ||
| node-version: ${{ matrix.node }} | ||
| - name: Install dependencies | ||
| run: npm i | ||
| - name: Test | ||
| run: npm t | ||
| release: | ||
| name: Release | ||
| runs-on: ubuntu-18.04 | ||
| needs: [ | ||
| test, | ||
| lint | ||
| ] | ||
| steps: | ||
| - name: 🛑 Cancel Previous Runs | ||
| uses: styfle/cancel-workflow-action@0.6.0 | ||
| with: | ||
| access_token: ${{ secrets.GITHUB_TOKEN }} | ||
| - name: Checkout | ||
| uses: actions/checkout@v2 | ||
| with: | ||
| fetch-depth: 0 | ||
| - name: Setup Node.js | ||
| uses: actions/setup-node@v2 | ||
| with: | ||
| node-version: 12 | ||
| - name: Build | ||
| run: npm i | ||
| - name: 🚀 Release | ||
| uses: cycjimmy/semantic-release-action@v2 | ||
| with: | ||
| semantic_version: 17 | ||
| branches: | | ||
| [ | ||
| 'master' | ||
| ] | ||
| env: | ||
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | ||
| NPM_TOKEN: ${{ secrets.NPM_TOKEN }} |
This file was deleted.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.