SBVT-2830: Regular Expression Denial of Service (ReDoS) in cross-spawn #371
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: typescript-check | |
| #on: [push] | |
| on: [pull_request] | |
| jobs: | |
| cypress-run: | |
| runs-on: self-hosted | |
| # Runs tests in parallel with matrix strategy https://docs.cypress.io/guides/guides/parallelization | |
| # https://docs.github.com/en/actions/using-jobs/using-a-matrix-for-your-jobs | |
| # Also see warning here https://github.com/cypress-io/github-action#parallel | |
| strategy: | |
| fail-fast: true # https://github.com/cypress-io/github-action/issues/48 | |
| matrix: | |
| containers: [ 1 ] | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v4 | |
| - name: Extract Branch Name and Set Test Run Name | |
| id: set-test-run-name | |
| run: | | |
| BRANCH_NAME=$(echo "${{ github.ref }}" | awk -F'/' '{print $3}') | |
| echo "::set-output name=TEST_RUN_NAME::${{ github.workflow }}—$BRANCH_NAME" | |
| - name: Install node version 24 | |
| uses: actions/setup-node@v3 | |
| with: | |
| node-version: '24' | |
| - name: Install root dependencies | |
| run: npm install | |
| - name: Install typescript-test dependencies | |
| run: npm install | |
| working-directory: ./test/typescript-test | |
| - name: Install linux sharp | |
| run: npm install --include=optional sharp | |
| - name: Setup visualtest | |
| run: npx visualtest-setup > visualtest-first-logs.txt | |
| working-directory: ./test/typescript-test | |
| - name: Setup visualtest for second time | |
| run: npx visualtest-setup > visualtest-second-logs.txt | |
| working-directory: ./test/typescript-test | |
| - name: Verify npx visualtest-setup | |
| run: npx jest | |
| working-directory: ./test/typescript-test | |
| - name: Cypress run | |
| uses: cypress-io/github-action@v5 | |
| with: | |
| quiet: true | |
| working-directory: ./test/typescript-test | |
| spec: cypress/e2e/* | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| PROJECT_TOKEN: ${{ secrets.DEV_EXAMPLE_7 }} | |
| TEST_RUN_NAME: ${{ steps.set-test-run-name.outputs.TEST_RUN_NAME }} | |
| SBVT_SCM_BRANCH: ${{ github.head_ref || github.ref_name }} | |
| SBVT_SCM_COMMIT_ID: ${{ github.sha }} | |
| DEBUG: TRUE | |