mirror of
https://github.com/finos/SymphonyElectron.git
synced 2024-12-29 02:11:28 -06:00
24 lines
570 B
YAML
24 lines
570 B
YAML
|
name: CVE Scanning for Node.js
|
||
|
|
|
||
|
|
on:
|
||
|
|
push:
|
||
|
|
paths:
|
||
|
|
- 'package.json'
|
||
|
|
- 'package-lock.json'
|
||
|
|
- 'allow-list.json'
|
||
|
|
- '.github/workflows/cve-scanning-node.yml'
|
||
|
|
|
||
|
|
jobs:
|
||
|
|
scan:
|
||
|
|
runs-on: ubuntu-latest
|
||
|
|
strategy:
|
||
|
|
matrix:
|
||
|
|
node-version: [16.x]
|
||
|
|
steps:
|
||
|
|
- uses: actions/checkout@v3
|
||
|
|
- name: Use Node.js ${{ matrix.node-version }}
|
||
|
|
uses: actions/setup-node@v3
|
||
|
|
with:
|
||
|
|
node-version: ${{ matrix.node-version }}
|
||
|
|
- run: npm ci --prod
|
||
|
|
- run: npx --yes auditjs ossi --whitelist allow-list.json
|