File tree Expand file tree Collapse file tree 2 files changed +49
-0
lines changed
Expand file tree Collapse file tree 2 files changed +49
-0
lines changed Original file line number Diff line number Diff line change 1+ name : NPM Audit Fix Run
2+
3+ on :
4+ workflow_dispatch :
5+ inputs :
6+ force :
7+ description : " Use --force flag for npm audit fix?"
8+ required : true
9+ type : boolean
10+ base_branch :
11+ description : " Specify a base branch"
12+ required : false
13+ default : " main"
14+
15+ jobs :
16+ audit-fix :
17+ uses : step-security/reusable-workflows/.github/workflows/npm_audit_fix.yml@v1
18+ with :
19+ force : ${{ inputs.force }}
20+ base_branch : ${{ inputs.base_branch }}
21+
22+ permissions :
23+ contents : write
24+ pull-requests : write
Original file line number Diff line number Diff line change 1+ name : ' Publish Immutable Action Version'
2+
3+ on :
4+ release :
5+ types : [published]
6+
7+ jobs :
8+ publish :
9+ runs-on : ubuntu-latest
10+ permissions :
11+ contents : read
12+ id-token : write
13+ packages : write
14+
15+ steps :
16+ - name : Harden the runner (Audit all outbound calls)
17+ uses : step-security/harden-runner@cb605e52c26070c328afc4562f0b4ada7618a84e # v2.10.4
18+ with :
19+ egress-policy : audit
20+
21+ - name : Checking out
22+ uses : actions/checkout@v4
23+ - name : Publish
24+ id : publish
25+ uses : actions/publish-immutable-action@0.0.4
You can’t perform that action at this time.
0 commit comments