Merge remote-tracking branch 'pheiduck/main' into rebase-pheiduck

2023-12-21 14:25:54 +00:00 · 2023-12-21 14:25:54 +00:00 · aa939d876c
commit aa939d876c
parent 83ac4ff4cf 7198490427
29 changed files with 3466 additions and 680 deletions
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@ -0,0 +1,40 @@
+name: "CodeQL"
+
+on:
+  push:
+    branches: [ "main" ]
+  pull_request:
+    branches: [ "main" ]
+  schedule:
+    - cron: "15 0 * * *"
+
+jobs:
+  analyze:
+    name: Analyze
+    runs-on: ubuntu-latest
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
+
+    strategy:
+      fail-fast: false
+      matrix:
+        language: [ 'javascript-typescript' ]
+
+    steps:
+    - name: Checkout repository
+      uses: actions/checkout@main
+
+    - name: Initialize CodeQL
+      uses: github/codeql-action/init@main
+      with:
+        languages: ${{ matrix.language }}
+
+    - name: Autobuild
+      uses: github/codeql-action/autobuild@main
+
+    - name: Perform CodeQL Analysis
+      uses: github/codeql-action/analyze@main
+      with:
+        category: "/language:${{matrix.language}}"
--- a/.github/workflows/deploy-development.yml
+++ b/.github/workflows/deploy-development.yml
@ -13,15 +13,15 @@ jobs:
      packages: write
      contents: read
    steps:
-    - uses: actions/checkout@v4
+    - uses: actions/checkout@main
      with:
        ref: production

    - name: Set up QEMU
-      uses: docker/setup-qemu-action@v1
+      uses: docker/setup-qemu-action@master

    - name: Set up Docker Buildx
-      uses: docker/setup-buildx-action@v1
+      uses: docker/setup-buildx-action@master

    - name: Login to GitHub Container Registry
      uses: docker/login-action@v3
@ -34,7 +34,7 @@ jobs:
      run: echo RELEASE=$(cat ./src/package.json | jq -r .release) >> $GITHUB_ENV
    
    - name: Build & Publish Docker Image
-      uses: docker/build-push-action@v5
+      uses: docker/build-push-action@master
      with:
        push: true
        platforms: linux/amd64,linux/arm/v6,linux/arm/v7,linux/arm64/v8
--- a/.github/workflows/deploy-stable.yml
+++ b/.github/workflows/deploy-stable.yml
@ -14,15 +14,15 @@ jobs:
      packages: write
      contents: read
    steps:
-    - uses: actions/checkout@v4
+    - uses: actions/checkout@main
      with:
        ref: production

    - name: Set up QEMU
-      uses: docker/setup-qemu-action@v1
+      uses: docker/setup-qemu-action@master

    - name: Set up Docker Buildx
-      uses: docker/setup-buildx-action@v1
+      uses: docker/setup-buildx-action@master

    - name: Login to GitHub Container Registry
      uses: docker/login-action@v3
@ -35,7 +35,7 @@ jobs:
      run: echo RELEASE=$(cat ./src/package.json | jq -r .release) >> $GITHUB_ENV
    
    - name: Build & Publish Docker Image
-      uses: docker/build-push-action@v5
+      uses: docker/build-push-action@master
      with:
        push: true
        platforms: linux/amd64,linux/arm/v6,linux/arm/v7,linux/arm64/v8
--- a/.github/workflows/lint.yml
+++ b/.github/workflows/lint.yml
@ -3,7 +3,7 @@ name: Lint
 on:
  push:
    branches:
-      - master
+      - main
      - production
  pull_request:

@ -12,12 +12,21 @@ jobs:
    name: Lint
    runs-on: ubuntu-latest
    steps:
-      - uses: actions/checkout@v2
-      - uses: actions/setup-node@v1
+      - name: Checkout repository
+        uses: actions/checkout@main
+      - name: Setup Node
+        uses: actions/setup-node@main
        with:
-          node-version: '18'
+          node-version: 'current'
+          check-latest: true
+          cache: 'npm'
+          cache-dependency-path: |
+            package-lock.json
+            src/package-lock.json

-      - run: |
+      - name: npm run lint
+        run: |
+          npm config set -g fund false
          cd src
          npm ci
          npm run lint
--- a/.github/workflows/npm-update-bot.yml
+++ b/.github/workflows/npm-update-bot.yml
@ -0,0 +1,39 @@
+name: NPM Update Bot 🤖
+
+on:
+  push:
+    branches: [ "main" ]
+  schedule:
+    - cron: "0 0 * * *"
+
+jobs:
+  npmupbot:
+    name: NPM Update Bot 🤖
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@main
+      - name: Setup Node
+        uses: actions/setup-node@main
+        with:
+          node-version: 'current'
+          check-latest: true
+          cache: 'npm'
+          cache-dependency-path: |
+            package-lock.json
+            src/package-lock.json
+
+      - name: Bot 🤖 "Updating NPM Packages..."
+        run: |
+          npm config set -g fund false
+          npm install -g --silent npm-check-updates
+          ncu -u
+          npm update
+          cd src
+          ncu -u
+          npm update
+          git config --global user.name 'NPM Update Bot'
+          git config --global user.email 'npmupbot@users.noreply.github.com'
+          git add .
+          git commit -am "npm: package updates" || true
+          git push || true