actions/toolkit
1
0
Fork 0
mirror of https://git.mirrors.martin98.com/https://github.com/actions/toolkit synced 2026-03-15 20:32:36 +08:00
Code Issues Packages Projects Releases Wiki Activity

Resolve vulnerabilities found by npm audit (#846)

Browse Source
This commit is contained in:
Brian Cristante
2021-06-16 09:20:08 -04:00
committed by GitHub
parent 11601c0d2d
commit 9167ce1f3a
3 changed files with 102 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
.github/workflows/audit.yml vendored
View File

@@ -31,8 +31,9 @@ jobs:
- name: Bootstrap
run: npm run bootstrap
- name: audit tools #disabled while we wait for https://github.com/actions/toolkit/issues/539
run: npm audit --audit-level=moderate
- name: audit tools
# `|| npm audit` to pretty-print the output if vulnerabilies are found after filtering.
run: npm audit --audit-level=moderate --json | scripts/audit-allow-list || npm audit --audit-level=moderate
- name: audit packages
run: npm run audit-all