diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 0000000..e0622c9 --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,11 @@ +--- +version: 2 +updates: + - package-ecosystem: "github-actions" + directory: "/" + schedule: + interval: "monthly" + reviewers: + - "fabasoad" + labels: + - "dependencies" diff --git a/.github/workflows/create-release.yml b/.github/workflows/create-release.yml index 2746328..c08ead0 100644 --- a/.github/workflows/create-release.yml +++ b/.github/workflows/create-release.yml @@ -11,7 +11,7 @@ jobs: name: Release runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2.4.0 + - uses: actions/checkout@v3 with: fetch-depth: 0 - name: Get latest release tag diff --git a/.github/workflows/functional-tests.yml b/.github/workflows/functional-tests.yml index 85ae5e7..b7980e8 100644 --- a/.github/workflows/functional-tests.yml +++ b/.github/workflows/functional-tests.yml @@ -2,15 +2,12 @@ name: Functional Tests on: + pull_request: + branches: + - '*' push: branches: - 'main' - - 'bugfix/**' - - 'dependabot/**' - - 'feature/**' - -env: - ACTIONS_ALLOW_UNSECURE_COMMANDS: true jobs: functional_tests: @@ -22,7 +19,7 @@ jobs: version: ['3.0-rc1'] runs-on: ${{ matrix.os }} steps: - - uses: actions/checkout@v2.4.0 + - uses: actions/checkout@v3 with: ref: ${{ github.ref }} - uses: ./ diff --git a/.github/workflows/security-tests.yml b/.github/workflows/security-tests.yml index 84e8671..71a6935 100644 --- a/.github/workflows/security-tests.yml +++ b/.github/workflows/security-tests.yml @@ -2,19 +2,19 @@ name: Security Tests on: + pull_request: + branches: + - '*' push: branches: - 'main' - - 'bugfix/**' - - 'dependabot/**' - - 'feature/**' jobs: snyk_tests: name: Snyk runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2.4.0 + - uses: actions/checkout@v3 with: ref: ${{ github.ref }} - uses: snyk/actions/node@master @@ -29,7 +29,7 @@ jobs: language: ['javascript'] steps: - name: Checkout repository - uses: actions/checkout@v2.4.0 + uses: actions/checkout@v3 - name: Initialize CodeQL uses: github/codeql-action/init@v1 with: diff --git a/.github/workflows/shell-lint.yml b/.github/workflows/shell-lint.yml index 8c41248..02294c8 100644 --- a/.github/workflows/shell-lint.yml +++ b/.github/workflows/shell-lint.yml @@ -13,5 +13,5 @@ jobs: timeout-minutes: 3 runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2.4.0 + - uses: actions/checkout@v3 - uses: bewuethr/shellcheck-action@v2.1 diff --git a/.github/workflows/unit-tests.yml b/.github/workflows/unit-tests.yml index 31c57e4..2f60f43 100644 --- a/.github/workflows/unit-tests.yml +++ b/.github/workflows/unit-tests.yml @@ -2,15 +2,12 @@ name: Unit Tests on: + pull_request: + branches: + - '*' push: branches: - 'main' - - 'bugfix/**' - - 'dependabot/**' - - 'feature/**' - -env: - ACTIONS_ALLOW_UNSECURE_COMMANDS: true jobs: unit_tests: @@ -18,10 +15,10 @@ jobs: timeout-minutes: 5 runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2.4.0 + - uses: actions/checkout@v3 - name: Cache node_modules id: cache - uses: actions/cache@v2.1.7 + uses: actions/cache@v3 with: path: '**/node_modules' key: ${{ runner.os }}-modules-${{ hashFiles('**/yarn.lock') }} diff --git a/.github/workflows/yaml-lint.yml b/.github/workflows/yaml-lint.yml index e1c3566..087a4f7 100644 --- a/.github/workflows/yaml-lint.yml +++ b/.github/workflows/yaml-lint.yml @@ -13,7 +13,7 @@ jobs: timeout-minutes: 3 runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2.4.0 + - uses: actions/checkout@v3 - uses: ibiqlik/action-yamllint@v3.1 with: config_file: .yamllint.yml diff --git a/.snyk b/.snyk deleted file mode 100644 index 8cb541f..0000000 --- a/.snyk +++ /dev/null @@ -1,4 +0,0 @@ -# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities. -version: v1.14.1 -ignore: {} -patch: {} diff --git a/package.json b/package.json index 1612762..405d6a2 100644 --- a/package.json +++ b/package.json @@ -9,10 +9,6 @@ "lint:es": "eslint src __tests__", "lint": "yarn run lint:md && yarn run lint:es", "postinstall": "yarn husky install", - "prepare": "yarn run snyk-protect", - "security:auth": "snyk auth", - "security:test": "snyk test", - "snyk-protect": "snyk protect", "test": "nyc mocha __tests__" }, "repository": { @@ -46,8 +42,6 @@ "mocha-param": "2.0.1", "nyc": "15.1.0", "sinon": "13.0.1", - "snyk": "1.852.0", "winston": "3.6.0" - }, - "snyk": true + } } diff --git a/yarn.lock b/yarn.lock index 6af44e2..cb2b937 100644 --- a/yarn.lock +++ b/yarn.lock @@ -1860,11 +1860,6 @@ sinon@13.0.1: nise "^5.1.1" supports-color "^7.2.0" -snyk@1.852.0: - version "1.852.0" - resolved "https://registry.yarnpkg.com/snyk/-/snyk-1.852.0.tgz#c539ece4f2a966312b2ac37960b375aa550f6d15" - integrity sha512-p+C0Jq7qYsdmt8gmyB7rz3I9+BsVZKrXx/VqfPRgZECTQLft5BlXXE8dtwPIlKTIIBGQeT9Cy6ZyKzvZxpE6OA== - source-map@^0.5.0: version "0.5.7" resolved "https://registry.yarnpkg.com/source-map/-/source-map-0.5.7.tgz#8a039d2d1021d22d1ea14c80d8ea468ba2ef3fcc"