build(deps): lock file maintenance #206

	# SPDX-FileCopyrightText: 2025 Digg - Agency for Digital Government
	#
	# SPDX-License-Identifier: CC0-1.0

	---
	name: Pull Request Workflow

	on:
	pull_request:
	branches:
	- main
	- develop
	- 'release/**'
	- 'feature/**'

	permissions:
	contents: read # Best Security practice. Jobs only get read as base, and then permissions are added as needed

	jobs:
	pr-checks:
	uses: diggsweden/reusable-ci/.github/workflows/pullrequest-orchestrator.yml@1bf6632ce48686293b0dead5f7bd2bcb5e820172 # v2.3.1
	secrets: inherit # Pass org-level secrets (NPM token if private packages)
	permissions:
	contents: read # Clone repository and read source code
	packages: read # Access private NPM packages from GitHub registry
	security-events: write # Upload ESLint/security findings to GitHub Security tab
	with:
	project-type: npm
	# MegaLinter is disabled for this project
	linters.megalint: false # Skip MegaLinter
	linters.publiccodelint: true

	test:
	needs: [pr-checks]
	if: always() # Run tests even if linting fails (get full CI feedback)
	permissions:
	contents: read # Read test files and source code
	packages: read # Fetch test dependencies from registry
	uses: ./.github/workflows/test.yml

Provide feedback