Bump lodash from 4.17.21 to 4.17.23 #137
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This workflow helps you trigger a SonarCloud analysis of your code and populates | |
| # GitHub Code Scanning alerts with the vulnerabilities found. | |
| # Free for open source project. | |
| name: SonarCloud analysis | |
| on: | |
| push: | |
| branches: ["master", "main"] | |
| pull_request: | |
| branches: ["master", "main"] | |
| types: [opened, synchronize, reopened] | |
| # Allows you to run this workflow manually from the Actions tab | |
| # eslint-disable-next-line yml/no-empty-mapping-value | |
| workflow_dispatch: | |
| permissions: | |
| pull-requests: read # allows SonarCloud to decorate PRs with analysis results | |
| env: | |
| NODE_VERSION: latest | |
| PHP_VERSION: 8.3 | |
| PHPUNIT_VERSION: 11 | |
| jobs: | |
| sonarqube: | |
| name: SonarQube | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Setup PHP ${{ env.PHP_VERSION }} | |
| uses: shivammathur/setup-php@v2 | |
| with: | |
| php-version: ${{ env.PHP_VERSION }} | |
| extensions: mbstring, intl, xdebug, json, sockets | |
| ini-values: max_execution_time=360 | |
| coverage: xdebug | |
| tools: php-cs-fixer, phpunit:${{ env.PHPUNIT_VERSION }} | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| - name: PHP info | |
| run: php -v | |
| - name: Checkout | |
| uses: actions/checkout@v4 | |
| with: | |
| # Disabling shallow clones is recommended for improving the relevancy of reporting | |
| fetch-depth: 0 | |
| - name: Use Node.js ${{ env.NODE_VERSION }} | |
| uses: actions/setup-node@v4.1.0 | |
| with: | |
| node-version: ${{ env.NODE_VERSION }} | |
| cache: "npm" | |
| - name: Install dependencies | |
| run: composer install --prefer-dist --no-progress | |
| - name: Install Node.js dependencies | |
| run: "[[ -f package-lock.json || -f npm-shrinkwrap.json ]] && npm ci || true" | |
| - name: Starting local web server | |
| # bash shell is required for Windows, otherwise the background | |
| # server does not start and work properly | |
| shell: bash | |
| run: npm run start-server & | |
| - name: Wait for server to start up | |
| run: npx wait-on --timeout 15000 http://127.0.0.1:3000 | |
| - name: Server warm up | |
| run: sleep 5 | |
| - name: Test coverage | |
| run: npm run coverage | |
| - name: SonarQube Scan | |
| uses: SonarSource/sonarqube-scan-action@v5.1.0 | |
| with: | |
| args: > | |
| -Dsonar.verbose=true | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any | |
| SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} |