nna/npm-audit-action
3
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
134 Commits 1 Branch 2 Tags
da9d037b1636e60d041900bc70842d4e65870efe
Commit Graph

134 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Naoki Oketani
da9d037b16 Merge pull request #149 from oke-py/node-version 
chore(test): run tests on node 16 & 18
 2022-12-15 21:29:24 +09:00
Naoki Oketani
a2adb56514 chore(test): run tests on node 16 & 18 2022-12-15 21:24:21 +09:00
Naoki Oketani
f95fe4fc11 Merge pull request #147 from oke-py/package-version 
fix: automatically update package version
 2022-12-11 20:51:12 +09:00
Naoki Oketani
8a70c78853 [skip ci] fix: automatically update package version 2022-12-11 20:50:04 +09:00
Naoki Oketani
e0254e0b6c Merge pull request #145 from oke-py/release-pr 
chore(release): labeled pull request triggers package version change
 2022-12-11 18:56:39 +09:00
Naoki Oketani
8d9211d055 chore(release): labeled pull request triggers package version change 2022-12-11 18:50:59 +09:00
oke-py
3dfb4053f0 chore(build): automated change 2022-12-11 07:29:02 +00:00
Naoki Oketani
b00b3d2e62 Merge pull request #142 from oke-py/actions-github 
chore(package): bump @actions/github from 5.0.3 to 5.1.1
 2022-12-11 16:28:26 +09:00
Naoki Oketani
84a239a23d chore(package): bump @actions/github from 5.0.3 to 5.1.1 2022-12-11 16:13:15 +09:00
Naoki Oketani
ed9ffb21dc Merge pull request #141 from oke-py/auto-commit 
chore(build): set up actions to automatically update dist/index.js
 2022-12-11 15:43:20 +09:00
Naoki Oketani
856d2a375a chore(build): set up actions to automatically update dist/index.js 2022-12-11 15:39:40 +09:00
Naoki Oketani
01ce539397 chore(build): npm run all to update dist/index.js 2022-12-11 13:37:47 +09:00
Naoki Oketani
0479d86d3c Merge pull request #139 from oke-py/axios 
chore(package): bump axios from 0.27.2 to 1.2.1
 2022-12-11 13:26:19 +09:00
Naoki Oketani
25d0ce465a chore(package): bump axios from 0.27.2 to 1.2.1 2022-12-11 13:20:46 +09:00
Naoki Oketani
aa4d1c994a Merge pull request #138 from oke-py/typescript 
chore(package): bump typescript from 3.9.10 to 4.9.4
 2022-12-11 13:17:44 +09:00
Naoki Oketani
b933796dbe chore(build): npm run all to update dist/index.js 2022-12-11 13:11:37 +09:00
Naoki Oketani
eb5e3041a4 chore(package): bump @typescript-eslint/parser from 5.30.5 to 5.46.0 2022-12-11 13:10:05 +09:00
Naoki Oketani
686d6554cd chore(package): bump @types/node from 16.11.43 to 18.11.13 2022-12-11 13:06:22 +09:00
Naoki Oketani
153cdc3701 fix: type guard for catched error 2022-12-11 13:06:22 +09:00
Naoki Oketani
6302adc652 chore(package): bump typescript from 3.9.10 to 4.9.4 2022-12-11 13:06:14 +09:00
Naoki Oketani
2156b461f8 Merge pull request #137 from oke-py/release 
release: 2.4.0
 2022-12-10 22:36:37 +09:00
Naoki Oketani
a59f3e9eb1 release: 2.4.0 2022-12-10 22:32:38 +09:00
Naoki Oketani
ab2f02ccc4 Merge pull request #136 from oke-py/docs 
docs: update actions/checkout
 2022-12-10 22:26:20 +09:00
Naoki Oketani
7bba303221 docs: update actions/checkout 2022-12-10 22:22:40 +09:00
Naoki Oketani
24d55cac8e Merge pull request #135 from oke-py/pr-build-not-create-issue 
test: PR build will not create a new issue to report vulnerabilities
 2022-12-10 22:21:12 +09:00
Naoki Oketani
c04a413c8d test: PR build will not create a new issue to report vulnerabilities 2022-12-10 22:16:40 +09:00
Naoki Oketani
8361ad707d Merge pull request #134 from oke-py/update-testdata-dependencies 
test: fix CVE-2022-24999 in testdata to avoid failure unit test
 2022-12-10 22:11:53 +09:00
Naoki Oketani
8ada989698 test: fix CVE-2022-24999 in testdata to avoid failure unit test 2022-12-10 22:07:37 +09:00
Naoki Oketani
a836f2ae99 Merge pull request #131 from oke-py/deprecated-command 
update @actions/core not to use deprecated commands
 2022-12-10 22:02:30 +09:00
Naoki Oketani
0dd0e42c47 build: npm run all 2022-12-10 21:58:11 +09:00
Naoki Oketani
c9382a0fb4 update @actions/core not to use deprecated commands 
https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
 2022-12-10 21:53:13 +09:00
Snyk bot
317d6dc36c fix: package.json & package-lock.json to reduce vulnerabilities (#129) 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-ACTIONSCORE-2980270
 2022-08-15 12:02:11 +09:00
Snyk bot
e311295dda fix: Dockerfile to reduce vulnerabilities (#128) 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-DEBIAN10-MARIADB103-2940554
- https://snyk.io/vuln/SNYK-DEBIAN10-MARIADB103-2940555
- https://snyk.io/vuln/SNYK-DEBIAN10-MARIADB103-2940555
- https://snyk.io/vuln/SNYK-DEBIAN10-ZLIB-2976149
- https://snyk.io/vuln/SNYK-DEBIAN10-ZLIB-2976149
 2022-08-13 13:10:53 +09:00
Naoki Oketani
c2ee44bdb9 update dependencies (#126) 
* update dependencies

* update devDependencies
 2022-07-09 18:36:20 +09:00
Naoki Oketani
e90fd04eb5 npm run all 2022-07-09 18:13:18 +09:00
Naoki Oketani
fb1ae3934f 2.3.0 2022-07-09 18:12:31 +09:00
William Barnes
5b91df5581 updating production flag to --omit=dev (#125) 
* updating production flag to --omit=dev

* fixing readme comment
 2022-07-09 18:08:36 +09:00
Naoki Oketani
3e3735791c update npm globally at an earlier step of each job (#124) 
* update npm globally at an earlier step of each job

* execute `npm update` with sudo

* seprate windows jobs from linux,mac jobs

* upgrade npm to latest on windows

* upgrade npm to latest on windows
 2022-07-01 07:16:46 +09:00
Naoki Oketani
2f9b156c84 npm run all 2022-05-12 07:47:12 +09:00
Naoki Oketani
b3151e9e51 2.2.0 2022-05-12 07:45:34 +09:00
Shaid Khan
33a41db91d Fix Commit - Committing fix whereby NPM Audit Actions Fails when running on Windows OS (#122) 
- This commit is to fix an issue when running the 'npm-audit-action' on the 'windows-latest'
- Integrated the 'spawnSync' to use the right 'npm' script based upon the OS used
 2022-05-12 07:45:03 +09:00
Naoki Oketani
c0410c237f Adds 'info', 'none' as a valid argument for audit-level (#120) 
* Adds 'info', 'none' as a valid argument for audit-level

* 2.1.0
 2022-04-12 08:19:34 +09:00
Naoki Oketani
e3662da326 Update default runtime to node16 (#118) 
* Update default runtime to node16

* update dependencies

* 2.0.0
 2022-03-26 15:31:24 +09:00
Naoki Oketani
6818f639a6 npm audit fix (#117) 2022-03-24 17:40:08 +09:00
dependabot[bot]
e0cb327868 Bump actions/checkout from 2 to 3 (#114) 
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2022-03-06 20:10:33 +09:00
Naoki Oketani
276d321c3b enable dependabot to update github-actions 2022-03-06 20:08:39 +09:00
Naoki Oketani
01882980c1 npm audit fix to fix CVE-2022-0536 (#111) 
* `npm audit fix` to fix CVE-2022-0536

* `npm run all` to apply the updates of dependencies
 2022-02-20 19:45:25 +09:00
Naoki Oketani
02cb9c4d3b fix CVE-2022-0235 (#108) 
* npm audit fix

* npm run all

* 1.8.4

* update README and daily action to use v1.8.4
 2022-01-25 12:30:57 +09:00
Naoki Oketani
8196a9cc90 Release v1.8.3 (#105) 
* 1.8.3

* update README and daily action to use v1.8.3
 2022-01-15 18:33:23 +09:00
Naoki Oketani
f03c7d976f fix CVE-2022-0155 (#104) 
* `npm audit fix` to fix CVE-2022-0155

* `npm run all` to apply the updates of dependencies
 2022-01-15 18:28:01 +09:00