2019-12-08 22:10:35 +09:00
|
|
|
name: 'npm audit action'
|
|
|
|
|
description: 'run npm audit'
|
|
|
|
|
author: 'Naoki Oketani <okepy.naoki@gmail.com>'
|
2019-12-08 19:17:13 +09:00
|
|
|
inputs:
|
2020-03-21 07:08:53 +09:00
|
|
|
audit_level:
|
|
|
|
|
description: 'The value of `--audit-level` flag'
|
|
|
|
|
default: low
|
|
|
|
|
required: false
|
2023-01-02 10:23:32 +09:00
|
|
|
create_issues:
|
|
|
|
|
description: 'Flag to create issues when vulnerabilities are found'
|
|
|
|
|
default: 'true'
|
2020-11-12 12:33:56 +02:00
|
|
|
required: false
|
2023-01-02 10:23:32 +09:00
|
|
|
create_pr_comments:
|
|
|
|
|
description: 'Flag to create pr comments when vulnerabilities are found'
|
|
|
|
|
default: 'true'
|
|
|
|
|
required: false
|
|
|
|
|
dedupe_issues:
|
|
|
|
|
description: 'Flag to de-dupe against open issues'
|
2020-12-12 13:56:05 +02:00
|
|
|
default: 'false'
|
|
|
|
|
required: false
|
2019-12-13 12:18:28 +09:00
|
|
|
github_context:
|
|
|
|
|
description: 'The `github` context'
|
|
|
|
|
default: ${{ toJson(github) }}
|
|
|
|
|
required: false
|
|
|
|
|
github_token:
|
2023-01-02 10:32:48 +09:00
|
|
|
description: 'GitHub Access Token. ${{ secrets.GITHUB_TOKEN }} is recommended.'
|
2019-12-09 08:51:14 +09:00
|
|
|
required: true
|
2019-12-09 09:41:29 +09:00
|
|
|
issue_assignees:
|
2019-12-09 12:43:13 +09:00
|
|
|
description: 'Issue assignees (separated by commma)'
|
|
|
|
|
required: false
|
|
|
|
|
issue_labels:
|
2023-01-02 10:32:48 +09:00
|
|
|
description: 'Issue labels (separated by commma)'
|
2019-12-09 09:41:29 +09:00
|
|
|
required: false
|
2019-12-09 08:51:14 +09:00
|
|
|
issue_title:
|
|
|
|
|
description: 'Issue title'
|
|
|
|
|
default: 'npm audit found vulnerabilities'
|
|
|
|
|
required: false
|
2023-01-02 10:23:32 +09:00
|
|
|
json_flag:
|
2023-01-02 10:32:48 +09:00
|
|
|
description: 'Run `npm audit` with `--json`'
|
2020-05-27 15:18:45 -07:00
|
|
|
default: 'false'
|
|
|
|
|
required: false
|
2023-01-02 10:23:32 +09:00
|
|
|
production_flag:
|
2023-01-02 10:32:48 +09:00
|
|
|
description: 'Run `npm audit` with `--omit=dev`'
|
2023-01-02 10:23:32 +09:00
|
|
|
default: 'false'
|
2021-10-03 09:26:16 +09:00
|
|
|
required: false
|
2023-01-02 10:23:32 +09:00
|
|
|
working_directory:
|
2023-01-02 10:32:48 +09:00
|
|
|
description: 'The directory which contains package.json'
|
2021-10-03 09:26:16 +09:00
|
|
|
required: false
|
2020-12-12 13:56:05 +02:00
|
|
|
outputs:
|
|
|
|
|
npm_audit:
|
|
|
|
|
description: 'The output of the npm audit report in a text format'
|
2019-12-08 19:17:13 +09:00
|
|
|
runs:
|
2022-03-26 15:31:24 +09:00
|
|
|
using: 'node16'
|
2019-12-08 19:17:13 +09:00
|
|
|
main: 'dist/index.js'
|
2019-12-10 18:48:15 +09:00
|
|
|
branding:
|
|
|
|
|
icon: 'search'
|
|
|
|
|
color: 'orange'
|
