Skip to content

Commit b18f6bc

Browse files
authored
Security maintenance (#595)
* chore(dependabot): cool-down to 5 days * chore: ignore NPM scripts & add save-exact to pin deps by default
2 parents 69c1e81 + d3a7d5d commit b18f6bc

File tree

8 files changed

+12
-6
lines changed

8 files changed

+12
-6
lines changed

.github/dependabot.yml

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -4,6 +4,8 @@ updates:
44
directory: /
55
schedule:
66
interval: monthly
7+
cooldown:
8+
default-days: 5
79
groups:
810
github-actions:
911
patterns:
@@ -14,6 +16,8 @@ updates:
1416
versioning-strategy: widen
1517
schedule:
1618
interval: weekly
19+
cooldown:
20+
default-days: 5
1721
groups:
1822
dependencies:
1923
dependency-type: "production"

.github/workflows/cache.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -32,7 +32,7 @@ jobs:
3232
with:
3333
node-version: ${{ matrix.node-version }}
3434
- name: Install dependencies
35-
run: npm install
35+
run: npm install --ignore-scripts
3636
- name: Build
3737
run: npm run build:all
3838
- name: Run tests

.github/workflows/nodejs.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -28,7 +28,7 @@ jobs:
2828
with:
2929
node-version: ${{ matrix.node-version }}
3030
- name: Install dependencies
31-
run: npm install
31+
run: npm install --ignore-scripts
3232
- name: Build
3333
run: npm run build --ws --if-present
3434
- name: Run tests

.github/workflows/npm-provenance.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -20,7 +20,7 @@ jobs:
2020
node-version: '20.x'
2121
registry-url: 'https://registry.npmjs.org'
2222
- run: npm install -g npm
23-
- run: npm install
23+
- run: npm install --ignore-scripts
2424
- run: npm publish --provenance
2525
env:
2626
NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}

.github/workflows/server.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -32,7 +32,7 @@ jobs:
3232
with:
3333
node-version: ${{ matrix.node-version }}
3434
- name: Install dependencies
35-
run: npm install
35+
run: npm install --ignore-scripts
3636
- name: Build
3737
run: npm run build:all
3838
- name: Run tests

.github/workflows/size-satisfies.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -32,7 +32,7 @@ jobs:
3232
with:
3333
node-version: ${{ matrix.node-version }}
3434
- name: Install dependencies
35-
run: npm install
35+
run: npm install --ignore-scripts
3636
- name: Build
3737
run: npm run build:all
3838
- name: Run tests

.github/workflows/vis-network.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -32,7 +32,7 @@ jobs:
3232
with:
3333
node-version: ${{ matrix.node-version }}
3434
- name: Install dependencies
35-
run: npm i
35+
run: npm install --ignore-scripts
3636
- name: Build
3737
run: npm run build:all
3838
- name: Run tests

.npmrc

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,2 +1,4 @@
11
package-lock=false
22
provenance=true
3+
save-exact=true
4+
ignore-scripts=true

0 commit comments

Comments
 (0)