Skip to content
.github/workflows/audit.yaml

Merge remote-tracking branch 'bbc/feat/vt-in-out-words-2' into releas… #1

Sign in to view logs

Merge remote-tracking branch 'bbc/feat/vt-in-out-words-2' into releas…

Merge remote-tracking branch 'bbc/feat/vt-in-out-words-2' into releas… #1

Workflow file for this run

.github/workflows/audit.yaml at 0998a93
name: Audit dependencies
on:
# Allows you to run this workflow manually from the Actions tab
workflow_dispatch:
jobs:
validate-prod-core-dependencies:
name: Validate Core production dependencies
runs-on: ubuntu-latest
continue-on-error: true
timeout-minutes: 15
steps:
- uses: actions/checkout@v4
with:
persist-credentials: false
- name: Use Node.js
uses: actions/setup-node@v4
with:
node-version-file: ".node-version"
- uses: ./.github/actions/setup-meteor
- name: restore node_modules
uses: actions/cache@v4
with:
path: |
meteor/node_modules
key: ${{ runner.os }}-${{ hashFiles('meteor/yarn.lock') }}-${{ hashFiles('meteor/.meteor/release') }}
- name: Validate production dependencies for vulnerabilities and compatible licenses
run: |
yarn
cd meteor
<<<<<<< HEAD

Check failure on line 32 in .github/workflows/audit.yaml

View workflow run for this annotation

GitHub Actions / .github/workflows/audit.yaml

Invalid workflow file 

You have an error in your yaml syntax on line 32
meteor npm run validate:prod-dependencies
=======
yarn validate:prod-dependencies
>>>>>>> bbc/feat/vt-in-out-words-2
env:
CI: true
validate-all-core-dependencies:
name: Validate all Core dependencies
runs-on: ubuntu-latest
continue-on-error: true
timeout-minutes: 15
steps:
- uses: actions/checkout@v4
with:
persist-credentials: false
- name: Use Node.js
uses: actions/setup-node@v4
with:
node-version-file: ".node-version"
- uses: ./.github/actions/setup-meteor
- name: restore node_modules
uses: actions/cache@v4
with:
path: |
meteor/node_modules
key: ${{ runner.os }}-${{ hashFiles('meteor/yarn.lock') }}-${{ hashFiles('meteor/.meteor/release') }}
- name: Validate production dependencies for vulnerabilities and compatible licenses
run: |
yarn
cd meteor
<<<<<<< HEAD
meteor npm run validate:all-dependencies
=======
yarn run validate:all-dependencies
>>>>>>> bbc/feat/vt-in-out-words-2
env:
CI: true
validate-prod-packages-dependencies:
name: Validate Package production dependencies
runs-on: ubuntu-latest
continue-on-error: true
timeout-minutes: 15
strategy:
fail-fast: false
matrix:
package-name:
- blueprints-integration
- server-core-integration
- shared-lib
- playout-gateway
- mos-gateway
- live-status-gateway
steps:
- uses: actions/checkout@v4
with:
persist-credentials: false
- name: Use Node.js
uses: actions/setup-node@v4
with:
node-version-file: ".node-version"
- name: Prepare Environment
run: |
cd packages
yarn install
env:
CI: true
- name: Validate production dependencies
run: |
cd packages/${{ matrix.package-name }}
if ! git log --format=oneline -n 1 | grep -q "\[ignore-audit\]"; then
yarn validate:dependencies
else
echo "Skipping audit"
fi
env:
CI: true
validate-all-package-dependencies:
name: Validate all Package dependencies
runs-on: ubuntu-latest
continue-on-error: true
timeout-minutes: 15
steps:
- uses: actions/checkout@v4
with:
persist-credentials: false
- name: Use Node.js
uses: actions/setup-node@v4
with:
node-version-file: ".node-version"
- name: Prepare Environment
run: |
cd packages
yarn install
env:
CI: true
- name: Validate production dependencies
run: |
cd packages
yarn validate:dependencies
env:
CI: true