Remove pnpm audit CI job in favor of Socket.dev#2385
Conversation
Drop the audit job from main.yml that ran pnpm audit on every PR, and add ADR 0003 documenting the decision to use Socket.dev for dependency security instead. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
|
|
The latest updates on your projects. Learn more about Vercel for GitHub.
9 Skipped Deployments
|
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## main #2385 +/- ##
=======================================
Coverage 38.15% 38.15%
=======================================
Files 1048 1048
Lines 67116 67116
Branches 3598 3598
=======================================
Hits 25605 25605
Misses 41121 41121
Partials 390 390
Flags with carried forward coverage won't be shown. Click here to find out more. ☔ View full report in Codecov by Harness. 🚀 New features to boost your workflow:
|
@stmpn it's already installed as App so no workflow needed |
Drop the audit job from main.yml that ran pnpm audit on every PR, and add ADR 0003 documenting the decision to use Socket.dev for dependency security instead.
Scope of the PR
Related issues
Checklist