[Snyk] Security upgrade @storybook/react-webpack5 from 7.6.20 to 8.4.0 #2348
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# This workflow will do a clean install of node dependencies, build the source code and run tests across different versions of node | |
# For more information see: https://help.github.com/actions/language-and-framework-guides/using-nodejs-with-github-actions | |
name: Test | |
on: | |
push: | |
branches: [devel] | |
pull_request: | |
branches: [devel] | |
jobs: | |
cypress: | |
name: Run cypress tests | |
runs-on: ubuntu-latest | |
container: | |
image: cypress/browsers:node18.12.0-chrome106-ff106 | |
options: --user 1001 | |
steps: | |
- uses: actions/checkout@v4 | |
name: Checkout | |
- name: Setup node | |
uses: actions/setup-node@v4 | |
with: | |
node-version-file: '.nvmrc' | |
cache: 'yarn' | |
- name: Install dependencides | |
run: >- | |
yarn install | |
- name: Cypress run | |
uses: cypress-io/github-action@v4 | |
with: | |
install-command: yarn --frozen-lockfile --silent | |
build: yarn build | |
start: npx serve -s build -p 3000 | |
wait-on: "http://localhost:3000" | |
config: baseUrl=http://localhost:3000 | |
timeout-minutes: 5 | |
browser: chrome | |
# store any screenshots of the failing tests as artifacts | |
- uses: actions/upload-artifact@v4 | |
if: failure() | |
with: | |
name: cypress-screenshots | |
path: cypress/screenshots | |
snyk_test: | |
name: Run snyk tests | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- name: Run Snyk to check for vulnerabilities | |
uses: snyk/actions/node@master #Pre-created container | |
continue-on-error: true #To make sure that SARIF upload gets called and also not to block CI run on snyk test failure | |
with: | |
command: code test | |
args: --severity-threshold=high --sarif-file-output=snyk.sarif | |
env: | |
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} | |
snyk_monitor: | |
name: Run snyk monitor | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- name: Run Snyk to check for vulnerabilities | |
uses: snyk/actions/node@master #Pre-created container | |
with: | |
command: monitor #monitor | |
env: | |
SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} | |
jest: | |
name: Run unit tests | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- name: Setup node | |
uses: actions/setup-node@v4 | |
with: | |
node-version-file: '.nvmrc' | |
cache: 'yarn' | |
- name: Install dependencides | |
run: >- | |
yarn install | |
- name: Run jest tests | |
run: >- | |
yarn test:unit | |
prettier: | |
name: Check format with prettier | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- name: Setup node | |
uses: actions/setup-node@v4 | |
with: | |
node-version-file: '.nvmrc' | |
cache: 'yarn' | |
- name: Install dependencides | |
run: >- | |
yarn install | |
- name: Run prettier | |
run: >- | |
yarn prettier --check . | |
eslint: | |
name: Lint with ESLint | |
runs-on: ubuntu-latest | |
steps: | |
- uses: actions/checkout@v4 | |
- name: Setup node | |
uses: actions/setup-node@v4 | |
with: | |
node-version-file: '.nvmrc' | |
cache: 'yarn' | |
- name: Install dependencides | |
run: >- | |
yarn install | |
- name: Lint using ESLint | |
run: >- | |
yarn lint |