Skip to content

Commit

Permalink
add npm audit
Browse files Browse the repository at this point in the history
  • Loading branch information
@michaelbrown-stateless
michaelbrown-stateless committed Oct 2, 2024
1 parent 873ec53 commit 8c56e56
Showing 1 changed file with 29 additions and 0 deletions.
29 changes: 29 additions & 0 deletions .github/workflows/npm-audit.yml
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,29 @@
on:
push:

jobs:
npm-audit-scan-job:
name: NPM Audit Scan for Vulnerabilities
runs-on: ubuntu-latest
steps:
- name: Checkout Source
uses: actions/checkout@v4

- name: Use Node.js
uses: actions/setup-node@v4
with:
node-version: '20.x'

- name: Step3 Install Dependencies
run: npm install

- name: NPM Audit Scan and Generate Report in JSON Format
run: npm audit --json > npm-audit-results.json
continue-on-error: true

- name: Upload NPM Audit Scan Report to GitHub
uses: actions/upload-artifact@v3
with:
name: npm-audit-results
path: npm-audit-results.json

0 comments on commit 8c56e56

Please sign in to comment.