mirror of https://github.com/actions/toolkit
Remove allow-list from audit
Releases can be made or PRs can be merged even if the workflow is failingpull/1278/head
parent
3d46598e70
commit
af2d2ff198
|
@ -32,8 +32,7 @@ jobs:
|
||||||
run: npm run bootstrap
|
run: npm run bootstrap
|
||||||
|
|
||||||
- name: audit tools
|
- name: audit tools
|
||||||
# `|| npm audit` to pretty-print the output if vulnerabilies are found after filtering.
|
run: npm audit --audit-level=moderate
|
||||||
run: npm audit --audit-level=moderate --json | scripts/audit-allow-list || npm audit --audit-level=moderate
|
|
||||||
|
|
||||||
- name: audit packages
|
- name: audit packages
|
||||||
run: npm run audit-all
|
run: npm run audit-all
|
||||||
|
|
Loading…
Reference in New Issue