Skip to content

fix: package.json & yarn.lock to reduce vulnerabilities #2852

fix: package.json & yarn.lock to reduce vulnerabilities

fix: package.json & yarn.lock to reduce vulnerabilities #2852

Workflow file for this run

name: Install, Test, Build
on: [push, pull_request]
jobs:
lint:
runs-on: ubuntu-latest
steps:
- name: Checkout Repo
uses: actions/checkout@v3
with:
fetch-depth: 0
- name: Use Node.js 14.x
uses: actions/setup-node@v3
with:
node-version: 14.17.4
- name: Install dependencies
run: yarn --prefer-offline --frozen-lockfile
- name: Run ESLint
run: yarn eslint-check
build:
runs-on: ubuntu-latest
steps:
- name: Checkout Repo
uses: actions/checkout@v3
- name: Use Node.js 14.x
uses: actions/setup-node@v3
with:
node-version: 14.17.4
- name: Install dependencies
run: yarn --prefer-offline --frozen-lockfile
- name: Build
run: yarn build
unit-integration-test:
needs: build
runs-on: ubuntu-latest
steps:
- name: Checkout Repo
uses: actions/checkout@v2
- name: Use Node.js 14.x
uses: actions/setup-node@v3
with:
node-version: 14.17.4
- name: Install dependencies
run: yarn --prefer-offline --frozen-lockfile
- name: Unit and Integration Test
run: yarn test:coverage
env:
NEW_RELIC_ENABLED: false
- name: Upload a Coverage Artifact
uses: actions/upload-artifact@v3.0.0
with:
name: coverage
path: coverage/
retention-days: 1
mutation-test:
needs: build
runs-on: ubuntu-latest
steps:
- name: Checkout Repo
uses: actions/checkout@v2
- name: Use Node.js 14.x
uses: actions/setup-node@v3
with:
node-version: 14.17.4
- name: Install dependencies
run: yarn --prefer-offline --frozen-lockfile
- name: Mutation Test
run: yarn test:mutation
env:
NEW_RELIC_ENABLED: false
STRYKER_DASHBOARD_API_KEY: ${{ secrets.STRYKER_DASHBOARD_API_KEY }}
sonar-coverage:
needs: unit-integration-test
if: ${{github.base_ref != 'dev'}}
runs-on: ubuntu-latest
steps:
- name: Checkout Repo
uses: actions/checkout@v3
with:
fetch-depth: 0
- name: Download Coverage Artifact
uses: actions/download-artifact@v3
with:
name: coverage
path: coverage
- name: Analyze with SonarCloud
uses: sonarsource/sonarcloud-github-action@master
with:
args: >
-Dsonar.organization=${{ secrets.SONAR_ORG }}
-Dsonar.projectKey=${{ secrets.SONAR_PROJ_KEY }}
-Dsonar.javascript.lcov.reportPaths=coverage/lcov.info
-Dsonar.sources=src/
-Dsonar.coverage.exclusions=src/server.js,src/utils/config.js,src/utils/api/**,src/utils/caching/**,src/utils/logger/**,src/utils/monitoring/**,src/utils/tracing/**
-Dsonar.test.exclusions=test/**
-Dsonar.tests=test/
-Dsonar.verbose=false
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
coveralls:
needs: unit-integration-test
runs-on: ubuntu-latest
steps:
- name: Checkout Repo
uses: actions/checkout@v3
- name: Download Coverage Artifact
uses: actions/download-artifact@v3
with:
name: coverage
path: coverage
- name: Coveralls
uses: coverallsapp/github-action@master
with:
path-to-lcov: ./coverage/lcov.info
github-token: ${{ secrets.GITHUB_TOKEN }}
sentry-release:
needs: [lint, build, unit-integration-test]
runs-on: ubuntu-latest
steps:
- name: Checkout Repo
uses: actions/checkout@v3
- name: Create Sentry release
if: ${{ github.repository_owner == 'CougarCS' && !contains(toJSON(github.event), 'pull_request')}}
uses: getsentry/action-release@v1
env:
SENTRY_AUTH_TOKEN: ${{ secrets.SENTRY_AUTH_TOKEN }}
SENTRY_ORG: ${{ secrets.SENTRY_ORG }}
SENTRY_PROJECT: ${{ secrets.SENTRY_PROJECT }}
with:
environment: production