Skip to content
CI

docs(skills): add practical examples and verification patterns (batch… #249

Sign in to view logs

docs(skills): add practical examples and verification patterns (batch…

docs(skills): add practical examples and verification patterns (batch… #249

Workflow file for this run

.github/workflows/ci.yml at 7e04fb5
# CI Workflow - Generated by repo-best-practices-bootstrap skill
# Mirrors pre-commit hooks to ensure enforcement in CI
name: CI
on:
push:
branches: [main]
pull_request:
branches: [main]
jobs:
lint:
name: Lint & Format Check
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Setup Node.js
uses: actions/setup-node@v4
with:
node-version: "20"
cache: "npm"
- name: Install dependencies
run: npm ci
- name: Check formatting (Prettier)
run: npx prettier --check .
- name: Lint markdown (markdownlint)
run: npx markdownlint-cli2
- name: Scan for secrets (secretlint)
run: npx secretlint "**/*"
- name: Spell check (cspell)
run: npx cspell "**/*.md"
- name: Check links (markdown-link-check)
run: |
find . -name '*.md' -not -path './node_modules/*' -not -path './.git/*' -not -path './.worktrees/*' | \
xargs -n 1 npx markdown-link-check --config .markdown-link-check.json --quiet
danger:
name: DangerJS PR Validation
runs-on: ubuntu-latest
timeout-minutes: 5
if: github.event_name == 'pull_request'
permissions:
contents: read
pull-requests: write
issues: read
steps:
- uses: actions/checkout@v4
- name: Setup Node.js
uses: actions/setup-node@v4
with:
node-version: "20"
cache: "npm"
- name: Install dependencies
run: npm ci
- name: Run Danger
run: npx danger ci
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
dependency-review:
name: Dependency Review
runs-on: ubuntu-latest
if: github.event_name == 'pull_request'
steps:
- uses: actions/checkout@v4
- name: Dependency Review
uses: actions/dependency-review-action@v4
codeql:
name: CodeQL Analysis
runs-on: ubuntu-latest
permissions:
security-events: write
steps:
- uses: actions/checkout@v4
- name: Initialize CodeQL
uses: github/codeql-action/init@v3
with:
languages: javascript
- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v3