nna/npm-audit-action
3
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
101 Commits 1 Branch 2 Tags
c2ee44bdb97ee28fe9f41d78779ee0127b687778
Commit Graph

44 Commits

Author SHA1 Message Date
Naoki Oketani
c2ee44bdb9 update dependencies (#126) 
* update dependencies

* update devDependencies
 2022-07-09 18:36:20 +09:00
Naoki Oketani
e90fd04eb5 npm run all 2022-07-09 18:13:18 +09:00
William Barnes
5b91df5581 updating production flag to --omit=dev (#125) 
* updating production flag to --omit=dev

* fixing readme comment
 2022-07-09 18:08:36 +09:00
Naoki Oketani
2f9b156c84 npm run all 2022-05-12 07:47:12 +09:00
Shaid Khan
33a41db91d Fix Commit - Committing fix whereby NPM Audit Actions Fails when running on Windows OS (#122) 
- This commit is to fix an issue when running the 'npm-audit-action' on the 'windows-latest'
- Integrated the 'spawnSync' to use the right 'npm' script based upon the OS used
 2022-05-12 07:45:03 +09:00
Naoki Oketani
c0410c237f Adds 'info', 'none' as a valid argument for audit-level (#120) 
* Adds 'info', 'none' as a valid argument for audit-level

* 2.1.0
 2022-04-12 08:19:34 +09:00
Naoki Oketani
e3662da326 Update default runtime to node16 (#118) 
* Update default runtime to node16

* update dependencies

* 2.0.0
 2022-03-26 15:31:24 +09:00
Naoki Oketani
01882980c1 npm audit fix to fix CVE-2022-0536 (#111) 
* `npm audit fix` to fix CVE-2022-0536

* `npm run all` to apply the updates of dependencies
 2022-02-20 19:45:25 +09:00
Naoki Oketani
02cb9c4d3b fix CVE-2022-0235 (#108) 
* npm audit fix

* npm run all

* 1.8.4

* update README and daily action to use v1.8.4
 2022-01-25 12:30:57 +09:00
Naoki Oketani
f03c7d976f fix CVE-2022-0155 (#104) 
* `npm audit fix` to fix CVE-2022-0155

* `npm run all` to apply the updates of dependencies
 2022-01-15 18:28:01 +09:00
Naoki Oketani
303bff6b61 Bump axios from 0.21.4 to 0.23.0 (#100) 2021-10-16 18:21:41 +09:00
Naoki Oketani
e3228ef09e Bump axios from 0.21.2 to 0.21.4 (#97) 2021-10-10 12:36:10 +09:00
Naoki Oketani
e434d1ce70 update dependencies (#96) 
* Bump @actions/core from 1.3.0 to 1.6.0

* Bump @actions/github from 4.0.0 to 5.0.0

* Bump @octokit/rest from 18.5.6 to 18.12.0

* Bump strip-ansi from 6.0.0 to 6.0.1
 2021-10-09 12:22:18 +09:00
Naoki Oketani
901e62d952 chore: format by prettier (js) 2021-10-08 21:23:15 +09:00
Pavish Kumar
9e9a90b41e Retain spaces within label (#95) 2021-10-08 21:17:46 +09:00
Naoki Oketani
47dbb726b6 feature: support create_issues, create_pr_comments flag (#93) 
* doc: support new parameter create_issues, create_pr_comments

* feature: support create_pr_comments flag

* feature: support create_issues flag
 2021-10-03 09:26:16 +09:00
Naoki Oketani
5b1038c826 update dependencies (#89) 
* Bump ansi-regex from 5.0.0 to 5.0.1 (fix CVE-2021-3807)

* Bump tmpl from 1.0.4 to 1.0.5 (fix CVE-2021-3777)

* update: eslint related dependencies

* chore: replace deprecated @zeit/ncc with @vercel/ncc
 2021-09-26 21:33:48 +09:00
Naoki Oketani
5d4cffea6d fix dependencies' vulnerabilities (#86) 
* [fix] `npm audit fix`

* [fix] `npm update`

* [fix] update jest, jest-circus, ts-jest

* 1.7.3
 2021-06-03 07:45:50 +09:00
Naoki Oketani
9ceef494c8 chore: run npm update (#83) 2021-05-03 14:36:46 +09:00
Naoki Oketani
9cc679ca2e upgrade(modules): npm update $module 2021-01-06 14:57:25 +09:00
Naoki Oketani
8851061b81 run npm run all 2020-12-12 12:01:55 +00:00
sgkiokas
c4cd169835 feat: add the ability to run with '--json' and output the result (#78) 
* addition-of-json-flag

* Set output of npn audit
 2020-12-12 20:56:05 +09:00
Naoki Oketani
3868af0215 update README & npm run all 2020-11-12 10:45:24 +00:00
Naoki Oketani
7b23c85c0d npm audit fix & npm update (#70) 
* npm audit fix & modify eslint rules

* update axios, @types/jest, eslint-plugin-jest

* update @octokit/rest, @typescript-eslint/parser

* update @actions/github
 2020-09-11 22:04:02 +09:00
Naoki Oketani
75b171622a v1.5.1 (#68) 
* run `npm audit fix`

* run `npm run all`

* 1.5.1

* use v1.5.1
 2020-07-14 19:14:55 +09:00
Spencer Small
b0bc596f8e Catch errors thrown by Audit.run and increase child process buffer size (#67) 
* Audit.run does not need to be async

* Set max buffer size for npm audit subprocess to 10MiB
 2020-07-14 18:59:28 +09:00
Naoki Oketani
f6ba9be9cf update example & daily scan to use v1.5.0 with dedupe_issues=true 2020-05-28 07:24:52 +09:00
Spencer Small
261cbab716 Support de-duping issues (#65) 
* De-dupe against open issues when dedupe_issues = true

* Update README

* Fix compile errors

* Add unit tests for issue.ts
 2020-05-28 07:18:45 +09:00
Naoki Oketani
5209022168 support different working directory (#64) 
* support different working directory

* validate working_directory
 2020-05-23 15:59:51 +09:00
Naoki Oketani
277fc872da update dependencies (#63) 
* npm update

* npm i jest@26.0.1 jest-circus@26.0.1 ts-jest@26.0.0

* npm i @types/node@14.0.5

* npm i eslint@7.1.0 @typescript-eslint/parser@3.0.0
 2020-05-23 15:06:32 +09:00
Naoki Oketani
161485c040 update @octokit/rest from 16.43.1 to 17.9.2 (#62) 2020-05-23 14:46:31 +09:00
Naoki Oketani
8e21576306 npm update dependencies (#59) 
* npm update

- @types/jest
- @types/node
- @typescript-eslint/parser
- @zeit/ncc jest
- jest-circus
- prettier
- ts-jest

* npm run all

* npm update graphql
 2020-04-30 07:43:27 +09:00
Naoki Oketani
79bd1d007d npm update (#56) 
* npm update

* update prettier to ^2.0.2

* npm run all

* update @zeit/ncc to ^0.22.0
 2020-03-29 19:57:04 +09:00
Naoki Oketani
ad3449ef9c filter vulnerabilities by audit_level (#55) 
* filter vulnerabilities by audit_level

* update README.md

* fix test cases

* restrict audit_level value

* update dist/index.js
 2020-03-21 07:08:53 +09:00
Naoki Oketani
f654b1dd0a fresh install jest, eslint (#53) 
* fresh install jest, eslint

* npm run all
 2020-03-19 17:35:08 +09:00
Naoki Oketani
dcb39c0a56 update @actions/github and @octokit/rest (#46) 2020-03-14 18:04:03 +09:00
Naoki Oketani
4df977494a update outdated dependencies(red) except for @octokit/rest (#44) 2020-03-14 16:50:32 +09:00
Naoki Oketani
ba4e9c22fd Action should fail if child_process causes an error (#41) 2020-03-14 15:46:51 +09:00
Naoki Oketani
02cdae80b6 Action fails always if vulnerabilities are found (#35) 2020-01-09 18:59:40 +09:00
Naoki Oketani
3e659c8c99 use GitHub context to branch processing (#22) 2019-12-13 12:18:28 +09:00
Naoki Oketani
be0cdcbe10 add test for issue option (#20) 2019-12-09 21:31:55 +09:00
Naoki Oketani
14d92785e4 Set Issue labels by inputs & add unit test (#12) 
* Set Issue labels by inputs

* Add unit test
 2019-12-09 12:43:13 +09:00
Naoki Oketani
9931b4d0d0 Set Issue assignees by inputs (#10) 
* Set Issue assignees by inputs

* remove unused file

* Revert "remove unused file"

This reverts commit f308fad240706376cf21c6df7490b84c66ef1905.

* npm run all

* add heading to README

* create issue templates
 2019-12-09 09:41:29 +09:00
Naoki Oketani
284541286f Initial commit 2019-12-08 19:17:13 +09:00