Skip to content

fix: package.json & package-lock.json to reduce vulnerabilities #1022

fix: package.json & package-lock.json to reduce vulnerabilities

fix: package.json & package-lock.json to reduce vulnerabilities #1022

Workflow file for this run

name: build
on:
push:
pull_request:
branches: [ master ]
jobs:
verify:
runs-on: ubuntu-latest
strategy:
matrix:
node-version: [ 10.x, 12.x, 14.x ]
steps:
- uses: actions/checkout@v2
- name: Use Node.js ${{ matrix.node-version }}
uses: actions/setup-node@v1
with:
node-version: ${{ matrix.node-version }}
- run: npm ci
- run: npm run lint
- run: npm test
automerge:
name: Auto-merge pull request
runs-on: ubuntu-latest
needs: [ verify ]
if: github.base_ref == 'master' && github.actor == 'dependabot[bot]'
steps:
- name: Merge
uses: actions/[email protected]
with:
script: |
github.pullRequests.createReview({
owner: context.payload.repository.owner.login,
repo: context.payload.repository.name,
pull_number: context.payload.pull_request.number,
event: 'APPROVE'
})
github.pullRequests.merge({
owner: context.payload.repository.owner.login,
repo: context.payload.repository.name,
pull_number: context.payload.pull_request.number
})
github-token: ${{github.token}}