33a41db91d
- This commit is to fix an issue when running the 'npm-audit-action' on the 'windows-latest' - Integrated the 'spawnSync' to use the right 'npm' script based upon the OS used
24 lines
521 B
YAML
24 lines
521 B
YAML
name: daily scan
|
|
|
|
on:
|
|
schedule:
|
|
- cron: '0 20 * * *'
|
|
|
|
jobs:
|
|
scan:
|
|
name: npm audit
|
|
strategy:
|
|
matrix:
|
|
os: [ ubuntu-latest, windows-latest, macos-latest ]
|
|
runs-on: ${{ matrix.os }}
|
|
steps:
|
|
- uses: actions/checkout@v3
|
|
- name: install dependencies
|
|
run: npm ci
|
|
- uses: oke-py/npm-audit-action@v2
|
|
with:
|
|
github_token: ${{ secrets.GITHUB_TOKEN }}
|
|
issue_assignees: oke-py
|
|
issue_labels: vulnerability
|
|
dedupe_issues: true
|