Skip to content

fix: package.json & yarn.lock to reduce vulnerabilities #355

fix: package.json & yarn.lock to reduce vulnerabilities

fix: package.json & yarn.lock to reduce vulnerabilities #355

Workflow file for this run

name: Project CI
on: [push, pull_request]
jobs:
lint:
strategy:
matrix:
platform: [ubuntu-latest]
node: ['14', '16', '18']
name: lint
runs-on: ${{ matrix.platform }}
steps:
- uses: actions/checkout@v3
- uses: actions/setup-node@v3
with:
node-version: ${{ matrix.node }}
- name: install dependencies
run: yarn install --frozen-lockfile --ignore-engines --ignore-scripts
- name: check lint
run: yarn lint
release:
name: Semantic release
runs-on: 'ubuntu-latest'
needs: lint
if: github.event_name == 'push' && github.ref == 'refs/heads/main'
steps:
- uses: actions/checkout@v3
- uses: actions/setup-node@v3
with:
node-version: '18'
- name: install dependencies
run: yarn install --frozen-lockfile --ignore-engines --ignore-scripts
- name: release
run: npx semantic-release
env:
GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
NPM_TOKEN: ${{secrets.NPM_TOKEN}}