nashtech-garage · khoilen · Jan 3, 2025 · Jan 3, 2025
diff --git a/.github/pull-request-template.md b/.github/pull-request-template.md
@@ -1,14 +1,19 @@
-Closes # <!-- addressed issue -->
+Closes #
+
+<!-- addressed issue -->
 
 ## 📑 Description
+
 <!-- describe root cause analysis -->
 
 ## ✅ Checks
 
-- [ ] My pull request adheres to the code style of this project
-- [ ] My code requires changes to the documentation
-- [ ] I have updated the documentation as required
-- [ ] All the tests have passed
+-   [ ] My pull request adheres to the code style of this project
+-   [ ] My code requires changes to the documentation
+-   [ ] I have updated the documentation as required
+-   [ ] All the tests have passed
+-   [ ] The dependencies in `package.json` are correct and necessary (no unused or missing package
 
 ## ℹ Additional Information
+
 <!-- adding more information -->
diff --git a/.github/workflows/check-vulnerabilities.yml b/.github/workflows/check-vulnerabilities.yml
@@ -0,0 +1,46 @@
+name: 'Package Audit'
+on:
+    pull_request:
+        branches:
+            - main
+        paths:
+            - '**/package.json'
+            - '**/pnpm-lock.yaml'
+
+jobs:
+    audit:
+        runs-on: ubuntu-latest
+        steps:
+            - name: Checkout repository
+              uses: actions/checkout@v4
+
+            - name: Set up Node.js
+              uses: actions/setup-node@v4
+              with:
+                  node-version: 20
+
+            - name: Install pnpm
+              run: npm install -g pnpm
+
+            - name: Set up PNPM_HOME and PATH
+              run: |
+                  echo "PNPM_HOME=$HOME/.local/share/pnpm" >> $GITHUB_ENV
+                  echo "PATH=$HOME/.local/share/pnpm:$PATH" >> $GITHUB_ENV
+                  mkdir -p $HOME/.local/share/pnpm
+                  export PNPM_HOME=$HOME/.local/share/pnpm
+                  export PATH=$PNPM_HOME:$PATH
+            - name: Install dependencies
+              run: pnpm install --no-frozen-lockfile
+
+            - name: Run pnpm audit
+              id: audit
+              run: |
+                  result=$(pnpm audit --json)
+                  echo "Audit result: $result"
+                  echo "$result" > audit-result.json
+                  if echo "$result" | grep -q '"advisory"'; then
+                    echo "Vulnerabilities found"
+                    exit 1
+                  else
+                    echo "No vulnerabilities found."
+                  fi
diff --git a/.github/workflows/publish-nt-css.yml b/.github/workflows/publish-nt-css.yml
@@ -2,8 +2,7 @@ name: 'Publish NT CSS Framework'
 
 on:
     release:
-        branches:
-            - main
+        types: [created]
 
 jobs:
     build-and-publish:

diff --git a/.gitignore b/.gitignore
@@ -42,4 +42,7 @@ testem.log
 # System Files
 .DS_Store
 Thumbs.db
-pnpm-lock-error.yaml
+pnpm-lock-error.yaml
+
+# Unit test coverage
+coverage
diff --git a/README.md b/README.md
@@ -25,3 +25,5 @@ Before running the project, ensure the following tools are installed:
 ```bash
 pnpm install
 ```
+
+### Commit message follows the [format](https://semantic-release.gitbook.io/semantic-release#commit-message-format)
diff --git a/apps/nt-stylesheet/bin/sim.spec.js b/apps/nt-stylesheet/bin/sim.spec.js
diff --git a/apps/nt-stylesheet/package.json b/apps/nt-stylesheet/package.json
@@ -38,11 +38,13 @@
         "@types/node": "20.4.9",
         "nx": "^20.2.2",
         "typescript": "^5.7.2",
-        "vite": "^6.0.3",
+        "vite": "^5.4.11",
+        "vite-plugin-dts": "^4.4.0",
         "vite-plugin-sass-dts": "^1.3.29",
         "vitest": "2.0.0"
     },
     "dependencies": {
+        "@nx/vite": "^20.3.0",
         "autoprefixer": "^10.4.20",
         "postcss": "^8.4.49",
         "postcss-import": "^16.1.0",
-Original file line number
+Diff line change
@@ Expand Up @@
     ```bash
     pnpm install
     ```
+    ### Commit message follows the [format](https://semantic-release.gitbook.io/semantic-release#commit-message-format)