Skip to content

NuGet vulnerabilities #2929

NuGet vulnerabilities

NuGet vulnerabilities #2929

name: NuGet vulnerabilities
concurrency:
group: ${{ github.workflow }}-${{ github.head_ref || github.run_id }}
cancel-in-progress: true
on:
schedule:
- cron: "0 0 * * 1-5"
push:
branches: [ master ]
paths-ignore:
- '**.md'
- 'docs/**'
pull_request:
branches: [ master ]
paths-ignore:
- '**.md'
- 'docs/**'
env:
DOTNET_NOLOGO: true
DOTNET_CLI_TELEMETRY_OPTOUT: true
DOTNET_SKIP_FIRST_TIME_EXPERIENCE: true
jobs:
nuget-vulnerabilities:
name: NuGet vulnerabilities
runs-on: ubuntu-latest
timeout-minutes: 5
steps:
- uses: actions/checkout@v4.2.2
- uses: actions/setup-dotnet@v4.1.0
- uses: actions/setup-node@v4.1.0
with:
node-version: 18
cache: 'npm'
cache-dependency-path: 'source/Gnomeshade.WebApi/Node/package-lock.json'
- name: Cache NuGet packages
uses: actions/cache@v4.1.2
with:
path: ~/.nuget/packages
key: ${{ runner.os }}-nuget-${{ hashFiles('**/packages.lock.json') }}
- run: ./deployment/nuget_vulnerabilities.sh