Skip to content
CI

fix: resolve minimatch ReDoS vulnerability via npm audit fix #37

Sign in to view logs

fix: resolve minimatch ReDoS vulnerability via npm audit fix

fix: resolve minimatch ReDoS vulnerability via npm audit fix #37

Workflow file for this run

.github/workflows/ci.yml at da3a655
name: CI
on:
push:
branches: [main, develop]
pull_request:
branches: [main, develop]
jobs:
build:
name: Build Check
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Setup Node.js
uses: actions/setup-node@v4
with:
node-version: '20'
- name: Install dependencies
run: npm ci
- name: Build application
env:
NEXT_PUBLIC_SUPABASE_URL: "https://placeholder.supabase.co"
NEXT_PUBLIC_SUPABASE_ANON_KEY: "placeholder-key"
SUPABASE_SERVICE_ROLE_KEY: "placeholder-service-key"
GITHUB_APP_ID: "123456"
GITHUB_APP_PRIVATE_KEY: "-----BEGIN RSA PRIVATE KEY-----\nplaceholder\n-----END RSA PRIVATE KEY-----"
GITHUB_APP_INSTALLATION_ID: "12345678"
GITHUB_TOKEN: "placeholder-token"
GITHUB_WEBHOOK_SECRET: "placeholder-webhook-secret"
run: npm run build
- name: Check bundle size
run: |
echo "Build completed successfully"
du -sh .next/static || echo "No static files found"
security:
name: Security Audit
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Setup Node.js
uses: actions/setup-node@v4
with:
node-version: '20'
- name: Install dependencies
run: npm ci
- name: Run security audit
run: npm audit --audit-level=high --production