Skip to content

fix: package.json & yarn.lock to reduce vulnerabilities #114

fix: package.json & yarn.lock to reduce vulnerabilities

fix: package.json & yarn.lock to reduce vulnerabilities #114

Workflow file for this run

name: CI
on: [push, pull_request]
jobs:
build:
strategy:
matrix:
platform: [ubuntu-latest]
node: ['20']
name: Node ${{ matrix.node }} (${{ matrix.platform }})
runs-on: ${{ matrix.platform }}
steps:
- uses: actions/checkout@v4
- uses: actions/setup-node@v4
with:
node-version: ${{ matrix.node }}
- name: install dependencies
run: yarn install --frozen-lockfile
- name: lint code
run: yarn run lint
- name: run tests
run: yarn run test
- name: get code coverage report
run: npx codecov
env:
CODECOV_TOKEN: ${{secrets.CODECOV_TOKEN}}
release:
name: do semantic release
runs-on: 'ubuntu-latest'
needs: build
steps:
- uses: actions/checkout@v4
- uses: actions/setup-node@v4
with:
node-version: '20'
- name: install dependencies
run: yarn install --frozen-lockfile --ignore-engines
- name: build script
run: yarn run build
- name: release
run: yarn run semantic-release
env:
GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
NPM_TOKEN: ${{secrets.NPM_TOKEN}}
if: github.event_name == 'push' && github.ref == 'refs/heads/master'