Resolve vulnerabilities found by npm audit (#846)
This commit is contained in:
@@ -31,8 +31,9 @@ jobs:
|
||||
- name: Bootstrap
|
||||
run: npm run bootstrap
|
||||
|
||||
- name: audit tools #disabled while we wait for https://github.com/actions/toolkit/issues/539
|
||||
run: npm audit --audit-level=moderate
|
||||
- name: audit tools
|
||||
# `|| npm audit` to pretty-print the output if vulnerabilies are found after filtering.
|
||||
run: npm audit --audit-level=moderate --json | scripts/audit-allow-list || npm audit --audit-level=moderate
|
||||
|
||||
- name: audit packages
|
||||
run: npm run audit-all
|
||||
|
||||
Reference in New Issue
Block a user