nna/npm-audit-action
3
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
a4fb3cef7f0c3b669b256db0421936715efb020b
npm-audit-action/README.md
Naoki Oketani a4fb3cef7f Add image and example to README.md
2019-12-09 14:13:56 +09:00

1.0 KiB
Raw Blame History

npm audit action

GitHub Action to run npm audit

If vulnerabilities are found by npm audit, it creates the following GitHub Issue.

image

Usage

Inputs

Parameter Required Default Value Description
issue_assignees false N/A Issue assignees (separated by commma)
issue_labels false N/A Issue labels (separated by commma)
issue_title false npm audit found vulnerabilities Issue title
token true N/A GitHub Access Token.
${{ secrets.GITHUB_TOKEN }} is recommended.

Outputs

N/A

Example Workflow

name: npm audit

on: [push, pull_request]
# on:
#   schedule:
#     - cron: '0 10 * * *'

jobs:
  scan:
    name: npm audit
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v1
      - name: install dependencies
        run: npm ci
      - uses: oke-py/npm-audit-action@v0.1.0
        with:
          token: ${{ secrets.GITHUB_TOKEN }}
          issue_assignees: oke-py
          issue_labels: vulnerability,test
Reference in New Issue View Git Blame Copy Permalink