1
0
Fork 0

separate audit workflow (#450)

pull/452/head
eric sciple 2020-05-07 11:39:38 -04:00 committed by GitHub
parent a5ff692285
commit 83dd3ef0f1
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
3 changed files with 40 additions and 9 deletions

38
.github/workflows/audit.yml vendored Normal file
View File

@ -0,0 +1,38 @@
name: toolkit-audit
on:
push:
branches:
- master
paths-ignore:
- '**.md'
pull_request:
paths-ignore:
- '**.md'
jobs:
build:
name: Audit
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v2
- name: Set Node.js 12.x
uses: actions/setup-node@v1
with:
node-version: 12.x
- name: npm install
run: npm install
- name: Bootstrap
run: npm run bootstrap
- name: audit tools
run: npm audit --audit-level=moderate
- name: audit packages
run: npm run audit-all

View File

@ -49,11 +49,3 @@ jobs:
- name: Format
run: npm run format-check
- name: audit tools
run: npm audit --audit-level=moderate
if: matrix.runs-on == 'ubuntu-latest'
- name: audit packages
run: npm run audit-all
if: matrix.runs-on == 'ubuntu-latest'

View File

@ -4,7 +4,8 @@
</p>
<p align="center">
<a href="https://github.com/actions/toolkit"><img alt="GitHub Actions status" src="https://github.com/actions/toolkit/workflows/toolkit-unit-tests/badge.svg"></a>
<a href="https://github.com/actions/toolkit/actions?query=workflow%3Atoolkit-unit-tests"><img alt="Toolkit unit tests status" src="https://github.com/actions/toolkit/workflows/toolkit-unit-tests/badge.svg"></a>
<a href="https://github.com/actions/toolkit/actions?query=workflow%3Atoolkit-audit"><img alt="Toolkit audit status" src="https://github.com/actions/toolkit/workflows/toolkit-audit/badge.svg"></a>
</p>