diff --git a/.github/workflows/analyse.yml b/.github/workflows/analyse.yml index c3334c3c..be18beaa 100644 --- a/.github/workflows/analyse.yml +++ b/.github/workflows/analyse.yml @@ -1,17 +1,16 @@ name: Code Analysis -on: - push: - branches: [main] - pull_request: - branches: [main] +on: [pull_request] jobs: slither: + name: Slither runs-on: ubuntu-latest + permissions: contents: read security-events: write + steps: - name: Checkout repository uses: actions/checkout@v3 @@ -19,7 +18,7 @@ jobs: - name: Setup node.js version uses: actions/setup-node@v3 with: - node-version: 16.x + node-version: 20.x cache: "npm" - name: Install node deps @@ -54,7 +53,9 @@ jobs: sarif_file: results.sarif solhint: + name: Solhint runs-on: ubuntu-latest + steps: - name: Checkout repository uses: actions/checkout@v3 @@ -62,7 +63,7 @@ jobs: - name: Setup node.js version uses: actions/setup-node@v3 with: - node-version: 16.x + node-version: 20.x - name: Install solhint run: > diff --git a/package-lock.json b/package-lock.json index 93eeec20..2d87dbd2 100644 --- a/package-lock.json +++ b/package-lock.json @@ -17103,6 +17103,7 @@ "version": "3.1.0", "resolved": "https://registry.npmjs.org/p-limit/-/p-limit-3.1.0.tgz", "integrity": "sha512-TYOanM3wGwNGsZN2cVTYPArw454xnXj5qmWF1bEoAc4+cU/ol7GVh7odevjp1FNHduHc3KZMcFduxU5Xc6uJRQ==", + "license": "MIT", "dependencies": { "yocto-queue": "^0.1.0" }, @@ -17130,6 +17131,7 @@ "resolved": "https://registry.npmjs.org/p-limit/-/p-limit-1.3.0.tgz", "integrity": "sha512-vvcXsLAJ9Dr5rQOPk7toZQZJApBl2K4J6dANSsEuh6QI41JYcsS/qhTGa9ErIUUgK3WNQoJYvylxvjqmiqEA9Q==", "dev": true, + "license": "MIT", "dependencies": { "p-try": "^1.0.0" }, @@ -17157,6 +17159,7 @@ "resolved": "https://registry.npmjs.org/p-try/-/p-try-1.0.0.tgz", "integrity": "sha512-U1etNYuMJoIz3ZXSrrySFjsXQTWOx2/jdi86L+2pRvph/qMKL6sbcCYdH23fqsbm8TH2Gn0OybpT4eSFlCVHww==", "dev": true, + "license": "MIT", "engines": { "node": ">=4" }