Home Explore Help
Sign In
RISCI_ATOM
/
nextcloud-server
mirror of https://github.com/nextcloud/server.git
1
0
Fork 0
Files Issues 23 Wiki
Tree: 0b8865071d
Branches Tags
nextcloud-serve...
/
.github
/
workflows
/
npm-audit-fix.yml

npm-audit-fix.yml 2.2 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071 
  1. # This workflow is provided via the organization template repository
    2. 

  2. #
    3. 

  3. # https://github.com/nextcloud/.github
    4. 

  4. # https://docs.github.com/en/actions/learn-github-actions/sharing-workflows-with-your-organization
    5. 

  5. 

  6. name: Npm audit fix and compile
    7. 

  7. 

  8. on:
    9. 

  9.   workflow_dispatch:
    10. 

  10.   schedule:
    11. 

  11.     # At 2:30 on Sundays
    12. 

  12.     - cron: '30 2 * * 0'
    13. 

  13. 

  14. jobs:
    15. 

  15.   build:
    16. 

  16.     runs-on: ubuntu-latest
    17. 

  17. 

  18.     strategy:
    19. 

  19.       fail-fast: false
    20. 

  20.       matrix:
    21. 

  21.         branches: ["main", "master", "stable27", "stable26", "stable25", "stable24"]
    22. 

  22.   
    23. 

  23.     name: npm-audit-fix-${{ matrix.branches }}
    24. 

  24. 

  25.     steps:
    26. 

  26.       - name: Checkout
    27. 

  27.         uses: actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab # v3.5.2
    28. 

  28.         with:
    29. 

  29.           ref: ${{ matrix.branches }}
    30. 

  30. 

  31.       - name: Read package.json node and npm engines version
    32. 

  32.         uses: skjnldsv/read-package-engines-version-actions@0ce2ed60f6df073a62a77c0a4958dd0fc68e32e7 # v2.1
    33. 

  33.         id: versions
    34. 

  34.         with:
    35. 

  35.           fallbackNode: '^16'
    36. 

  36.           fallbackNpm: '^7'
    37. 

  37. 

  38.       - name: Set up node ${{ steps.versions.outputs.nodeVersion }}
    39. 

  39.         uses: actions/setup-node@64ed1c7eab4cce3362f8c340dee64e5eaeef8f7c # v3
    40. 

  40.         with:
    41. 

  41.           node-version: ${{ steps.versions.outputs.nodeVersion }}
    42. 

  42. 

  43.       - name: Set up npm ${{ steps.versions.outputs.npmVersion }}
    44. 

  44.         run: npm i -g npm@"${{ steps.versions.outputs.npmVersion }}"
    45. 

  45. 

  46.       - name: Fix npm audit
    47. 

  47.         run: |
    48. 

  48.           npm audit fix
    49. 

  49. 

  50.       - name: Run npm ci and npm run build
    51. 

  51.         if: always()
    52. 

  52.         run: |
    53. 

  53.           npm ci
    54. 

  54.           npm run build --if-present
    55. 

  55. 

  56.       - name: Create Pull Request
    57. 

  57.         if: always()
    58. 

  58.         uses: peter-evans/create-pull-request@284f54f989303d2699d373481a0cfa13ad5a6666 # v5
    59. 

  59.         with:
    60. 

  60.           token: ${{ secrets.COMMAND_BOT_PAT }}
    61. 

  61.           commit-message: "chore(deps): fix npm audit"
    62. 

  62.           committer: GitHub <noreply@github.com>
    63. 

  63.           author: nextcloud-command <nextcloud-command@users.noreply.github.com>
    64. 

  64.           signoff: true
    65. 

  65.           branch: automated/noid/${{ matrix.branches }}-fix-npm-audit
    66. 

  66.           title: "[${{ matrix.branches }}] Fix npm audit"
    67. 

  67.           body: |
    68. 

  68.             Auto-generated fix of npm audit
    69. 

  69.           labels: |
    70. 

  70.             dependencies
    71. 

  71.             3. to review
    72.