npm audit fix #483
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Lint | |
| on: | |
| push: | |
| # Runs against the workflow and code from the merge commit | |
| # pull_request: | |
| # types: [ opened, synchronize, reopened ] | |
| # Runs against the workflow and code from the base of the pull request | |
| pull_request_target: | |
| types: [opened, synchronize, reopened] | |
| env: | |
| DISABLE_PROGRESS: true | |
| concurrency: | |
| group: ${{ github.workflow }}-${{ github.head_ref || github.run_id }} | |
| cancel-in-progress: true | |
| permissions: | |
| checks: write | |
| jobs: | |
| Lint: | |
| name: ⚡ ES Lint | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Check user for team affiliation | |
| uses: tspascoal/get-user-teams-membership@v2 | |
| id: checkUserMember | |
| with: | |
| GITHUB_TOKEN: ${{ secrets.ES_LINT_TOKEN }} | |
| username: ${{ github.actor }} | |
| organization: xola | |
| team: 'Engineering,X2 Consultants' | |
| - if: ${{ steps.checkUserMember.outputs.isTeamMember == 'false' }} | |
| run: | | |
| echo "Hey ${{ github.actor }} you are not in a whitelisted team" | |
| exit 1 | |
| - uses: actions/checkout@v3 | |
| with: | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| ref: ${{github.event.pull_request.head.sha}} | |
| repository: ${{github.event.pull_request.head.repo.full_name}} | |
| - name: Node.JS 16 | |
| uses: actions/setup-node@v3 | |
| with: | |
| node-version: 16 | |
| cache: "npm" | |
| cache-dependency-path: "package-lock.json" | |
| - name: Install Node Dependencies | |
| run: npm ci --no-fund --no-audit | |
| - name: Save Code Linting Report to JSON | |
| # This is to show failures in GitHub pull request using the action below | |
| run: npm run lint:report | |
| continue-on-error: true | |
| - name: Annotate Code Linting Results | |
| uses: ataylorme/[email protected] | |
| with: | |
| check-name: "View Lint Report" | |
| markdown-report-on-step-summary: true | |
| repo-token: ${{ secrets.GITHUB_TOKEN }} | |
| report-json: "eslint_report.json" | |
| # # OPTIONAL: save a copy of the usage report for download or use in another job | |
| # # Save a copy of the usage report for download or use in another job | |
| # - name: Upload ESLint report | |
| # uses: actions/upload-artifact@v3 | |
| # with: | |
| # name: eslint_report.json | |
| # path: eslint_report.json |