Skip to content

Commit

Permalink
feat: add audit and fund flags to install
Browse files Browse the repository at this point in the history
Closes #108
  • Loading branch information
lukekarrys committed Mar 31, 2022
1 parent ba5907b commit 0555d67
Show file tree
Hide file tree
Showing 8 changed files with 22 additions and 22 deletions.
2 changes: 1 addition & 1 deletion .github/workflows/audit.yml
Original file line number Diff line number Diff line change
Expand Up @@ -23,5 +23,5 @@ jobs:
- name: Update npm to latest
run: npm i --prefer-online --no-fund --no-audit -g npm@latest
- run: npm -v
- run: npm i --ignore-scripts --package-lock
- run: npm i --ignore-scripts --no-audit --no-fund --package-lock
- run: npm audit
4 changes: 2 additions & 2 deletions .github/workflows/ci.yml
Original file line number Diff line number Diff line change
Expand Up @@ -30,7 +30,7 @@ jobs:
- name: Update npm to latest
run: npm i --prefer-online --no-fund --no-audit -g npm@latest
- run: npm -v
- run: npm i --ignore-scripts
- run: npm i --ignore-scripts --no-audit --no-fund
- run: npm run lint

test:
Expand Down Expand Up @@ -82,5 +82,5 @@ jobs:
if: ${{ !startsWith(matrix.node-version, '10.') }}
run: npm i --prefer-online --no-fund --no-audit -g npm@latest
- run: npm -v
- run: npm i --ignore-scripts
- run: npm i --ignore-scripts --no-audit --no-fund
- run: npm test --ignore-scripts
2 changes: 1 addition & 1 deletion .github/workflows/post-dependabot.yml
Original file line number Diff line number Diff line change
Expand Up @@ -36,7 +36,7 @@ jobs:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
run: |
gh pr checkout ${{ github.event.pull_request.number }}
npm install --ignore-scripts
npm install --ignore-scripts --no-audit --no-fund
npm run template-oss-apply
git add .
git commit -am "chore: postinstall for dependabot template-oss PR"
Expand Down
2 changes: 1 addition & 1 deletion lib/content/audit.yml
Original file line number Diff line number Diff line change
Expand Up @@ -12,5 +12,5 @@ jobs:
steps:
{{> setupGit}}
{{> setupNode}}
- run: npm i --ignore-scripts --package-lock
- run: npm i --ignore-scripts --no-audit --no-fund --package-lock
- run: npm audit
4 changes: 2 additions & 2 deletions lib/content/ci.yml
Original file line number Diff line number Diff line change
Expand Up @@ -28,7 +28,7 @@ jobs:
steps:
{{> setupGit}}
{{> setupNode}}
- run: npm i --ignore-scripts
- run: npm i --ignore-scripts --no-audit --no-fund
- run: npm run lint {{~#if isWorkspace}} -w {{pkgName}}{{/if}}

test:
Expand All @@ -55,5 +55,5 @@ jobs:
steps:
{{> setupGit}}
{{> setupNode useMatrix=true}}
- run: npm i --ignore-scripts
- run: npm i --ignore-scripts --no-audit --no-fund
- run: npm test --ignore-scripts {{~#if isWorkspace}} -w {{pkgName}}{{/if}}
2 changes: 1 addition & 1 deletion lib/content/post-dependabot.yml
Original file line number Diff line number Diff line change
Expand Up @@ -26,7 +26,7 @@ jobs:
GITHUB_TOKEN: $\{{ secrets.GITHUB_TOKEN }}
run: |
gh pr checkout $\{{ github.event.pull_request.number }}
npm install --ignore-scripts
npm install --ignore-scripts --no-audit --no-fund
npm run template-oss-apply
git add .
git commit -am "chore: postinstall for dependabot template-oss PR"
Expand Down
24 changes: 12 additions & 12 deletions tap-snapshots/test/apply/full-content.js.test.cjs
Original file line number Diff line number Diff line change
Expand Up @@ -153,7 +153,7 @@ jobs:
- name: Update npm to latest
run: npm i --prefer-online --no-fund --no-audit -g npm@latest
- run: npm -v
- run: npm i --ignore-scripts --package-lock
- run: npm i --ignore-scripts --no-audit --no-fund --package-lock
- run: npm audit
.github/workflows/ci.yml
Expand Down Expand Up @@ -190,7 +190,7 @@ jobs:
- name: Update npm to latest
run: npm i --prefer-online --no-fund --no-audit -g npm@latest
- run: npm -v
- run: npm i --ignore-scripts
- run: npm i --ignore-scripts --no-audit --no-fund
- run: npm run lint
test:
Expand Down Expand Up @@ -242,7 +242,7 @@ jobs:
if: \${{ !startsWith(matrix.node-version, '10.') }}
run: npm i --prefer-online --no-fund --no-audit -g npm@latest
- run: npm -v
- run: npm i --ignore-scripts
- run: npm i --ignore-scripts --no-audit --no-fund
- run: npm test --ignore-scripts
.github/workflows/codeql-analysis.yml
Expand Down Expand Up @@ -332,7 +332,7 @@ jobs:
GITHUB_TOKEN: \${{ secrets.GITHUB_TOKEN }}
run: |
gh pr checkout \${{ github.event.pull_request.number }}
npm install --ignore-scripts
npm install --ignore-scripts --no-audit --no-fund
npm run template-oss-apply
git add .
git commit -am "chore: postinstall for dependabot template-oss PR"
Expand Down Expand Up @@ -632,7 +632,7 @@ jobs:
- name: Update npm to latest
run: npm i --prefer-online --no-fund --no-audit -g npm@latest
- run: npm -v
- run: npm i --ignore-scripts --package-lock
- run: npm i --ignore-scripts --no-audit --no-fund --package-lock
- run: npm audit
.github/workflows/ci-bbb.yml
Expand Down Expand Up @@ -673,7 +673,7 @@ jobs:
- name: Update npm to latest
run: npm i --prefer-online --no-fund --no-audit -g npm@latest
- run: npm -v
- run: npm i --ignore-scripts
- run: npm i --ignore-scripts --no-audit --no-fund
- run: npm run lint -w bbb
test:
Expand Down Expand Up @@ -725,7 +725,7 @@ jobs:
if: \${{ !startsWith(matrix.node-version, '10.') }}
run: npm i --prefer-online --no-fund --no-audit -g npm@latest
- run: npm -v
- run: npm i --ignore-scripts
- run: npm i --ignore-scripts --no-audit --no-fund
- run: npm test --ignore-scripts -w bbb
.github/workflows/ci-name-aaaa.yml
Expand Down Expand Up @@ -766,7 +766,7 @@ jobs:
- name: Update npm to latest
run: npm i --prefer-online --no-fund --no-audit -g npm@latest
- run: npm -v
- run: npm i --ignore-scripts
- run: npm i --ignore-scripts --no-audit --no-fund
- run: npm run lint -w @name/aaaa
test:
Expand Down Expand Up @@ -818,7 +818,7 @@ jobs:
if: \${{ !startsWith(matrix.node-version, '10.') }}
run: npm i --prefer-online --no-fund --no-audit -g npm@latest
- run: npm -v
- run: npm i --ignore-scripts
- run: npm i --ignore-scripts --no-audit --no-fund
- run: npm test --ignore-scripts -w @name/aaaa
.github/workflows/ci.yml
Expand Down Expand Up @@ -855,7 +855,7 @@ jobs:
- name: Update npm to latest
run: npm i --prefer-online --no-fund --no-audit -g npm@latest
- run: npm -v
- run: npm i --ignore-scripts
- run: npm i --ignore-scripts --no-audit --no-fund
- run: npm run lint
test:
Expand Down Expand Up @@ -907,7 +907,7 @@ jobs:
if: \${{ !startsWith(matrix.node-version, '10.') }}
run: npm i --prefer-online --no-fund --no-audit -g npm@latest
- run: npm -v
- run: npm i --ignore-scripts
- run: npm i --ignore-scripts --no-audit --no-fund
- run: npm test --ignore-scripts
.github/workflows/codeql-analysis.yml
Expand Down Expand Up @@ -997,7 +997,7 @@ jobs:
GITHUB_TOKEN: \${{ secrets.GITHUB_TOKEN }}
run: |
gh pr checkout \${{ github.event.pull_request.number }}
npm install --ignore-scripts
npm install --ignore-scripts --no-audit --no-fund
npm run template-oss-apply
git add .
git commit -am "chore: postinstall for dependabot template-oss PR"
Expand Down
4 changes: 2 additions & 2 deletions tap-snapshots/test/check/diffs.js.test.cjs
Original file line number Diff line number Diff line change
Expand Up @@ -333,7 +333,7 @@ The repo file ci.yml needs to be updated:
+ if: \${{ !startsWith(matrix.node-version, '10.') }}
+ run: npm i --prefer-online --no-fund --no-audit -g npm@latest
+ - run: npm -v
+ - run: npm i --ignore-scripts
+ - run: npm i --ignore-scripts --no-audit --no-fund
+ - run: npm test --ignore-scripts
To correct it: npx template-oss-apply --force
Expand Down Expand Up @@ -373,7 +373,7 @@ The repo file audit.yml needs to be updated:
- name: Update npm to latest
run: npm i --prefer-online --no-fund --no-audit -g npm@latest
- run: npm -v
- run: npm i --ignore-scripts --package-lock
- run: npm i --ignore-scripts --no-audit --no-fund --package-lock
- run: npm audit
Expand Down

0 comments on commit 0555d67

Please sign in to comment.