Skip to content

[Snyk] Security upgrade next from 14.2.13 to 14.2.15 #1024

[Snyk] Security upgrade next from 14.2.13 to 14.2.15

[Snyk] Security upgrade next from 14.2.13 to 14.2.15 #1024

name: Security, Code Quality and Bundle Size Checks
on:
pull_request:
branches: ['develop', 'main', 'hotfix/*']
types: ['opened', 'reopened', 'synchronize']
env:
NODE_OPTIONS: '--no-warnings'
BASE_REF: ${{ github.event.pull_request.base.sha || 'HEAD' }}
jobs:
bundle-size-checks:
name: Bundle size checks
runs-on: [self-hosted, Linux, X64]
steps:
- name: Checkout
uses: actions/checkout@v4
with:
ref: ${{ github.event.pull_request.head.sha }}
- name: Setup Node
uses: actions/setup-node@v4
with:
node-version-file: '.nvmrc'
cache: 'npm'
- name: Execute bundle size checks
uses: rudderlabs/[email protected]
env:
HUSKY: 0
with:
github_token: ${{ secrets.GITHUB_TOKEN }}
install_script: setup:ci
build_script: check:size:build
clean_script: clean
script: npm run check:size:json:ci --silent -- --output-style=static --silent=true --exclude=@rudderstack/analytics-js-sanity-suite
is_monorepo: true
security-code-quality-checks:
name: Security and code quality checks
runs-on: [self-hosted, Linux, X64]
steps:
- name: Checkout
uses: actions/checkout@v4
with:
fetch-depth: 0
ref: ${{ github.event.pull_request.head.sha }}
- name: Setup Node
uses: actions/setup-node@v4
with:
node-version-file: '.nvmrc'
cache: 'npm'
- name: Install dependencies
env:
HUSKY: 0
run: |
npm run setup:ci
- name: Execute code quality checks
run: |
npm run check:duplicates
- name: Build the project
run: |
npm run build:ci
npm run build:modern:ci
- name: Execute package linting checks
run: |
npm run check:pub:ci
- name: Execute security checks
run: |
npm run check:security