X-Git-Url: https://git.piment-noir.org/?a=blobdiff_plain;f=.github%2Fworkflows%2Fci.yml;h=56ed5215219a45ac4202b5287b59d48a205dc7e0;hb=7bba3209fa975827c841aeab8fa20b4837ca64b1;hp=e88393ece8b4143a5afd6435f3341391b3385db3;hpb=d9d8bb32d5cf4196282f86412a147657a83035c7;p=e-mobility-charging-stations-simulator.git diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index e88393ec..56ed5215 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -26,7 +26,7 @@ jobs: strategy: matrix: os: [windows-latest, macos-latest, ubuntu-latest] - node: ['20.x'] + node: ['20.x', 'latest'] name: Build simulator with Node ${{ matrix.node }} on ${{ matrix.os }} runs-on: ${{ matrix.os }} steps: @@ -35,23 +35,24 @@ jobs: fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis - name: Dependency Review if: ${{ github.event_name == 'push' && matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} - uses: actions/dependency-review-action@v3 + uses: actions/dependency-review-action@v4 with: base-ref: ${{ github.ref_name }} head-ref: ${{ github.sha }} - name: Pull Request Dependency Review if: ${{ github.event_name == 'pull_request' && matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} - uses: actions/dependency-review-action@v3 - - uses: pnpm/action-setup@v2 - with: - version: 8 + uses: actions/dependency-review-action@v4 + - uses: pnpm/action-setup@v3 - name: Setup node ${{ matrix.node }} - uses: actions/setup-node@v3 + uses: actions/setup-node@v4 with: node-version: ${{ matrix.node }} cache: 'pnpm' - name: pnpm install run: pnpm install --ignore-scripts --frozen-lockfile + - name: pnpm audit + if: ${{ matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} + run: pnpm audit --prod - name: pnpm lint if: ${{ matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} run: pnpm lint @@ -64,7 +65,7 @@ jobs: run: pnpm coverage - name: SonarCloud Scan if: ${{ needs.check-secrets.outputs.sonar-token-exists == 'true' && github.repository == 'sap/e-mobility-charging-stations-simulator' && matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} - uses: sonarsource/sonarcloud-github-action@v2.0.2 + uses: sonarsource/sonarcloud-github-action@v2.1.1 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} @@ -73,7 +74,7 @@ jobs: strategy: matrix: os: [windows-latest, macos-latest, ubuntu-latest] - node: ['18.x', '20.x'] + node: ['18.x', '20.x', 'latest'] name: Build dashboard with Node ${{ matrix.node }} on ${{ matrix.os }} runs-on: ${{ matrix.os }} defaults: @@ -85,23 +86,24 @@ jobs: fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis - name: Dependency Review if: ${{ github.event_name == 'push' && matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} - uses: actions/dependency-review-action@v3 + uses: actions/dependency-review-action@v4 with: base-ref: ${{ github.ref_name }} head-ref: ${{ github.sha }} - name: Pull Request Dependency Review if: ${{ github.event_name == 'pull_request' && matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} - uses: actions/dependency-review-action@v3 - - uses: pnpm/action-setup@v2 - with: - version: 8 + uses: actions/dependency-review-action@v4 + - uses: pnpm/action-setup@v3 - name: Setup node ${{ matrix.node }} - uses: actions/setup-node@v3 + uses: actions/setup-node@v4 with: node-version: ${{ matrix.node }} cache: 'pnpm' - name: pnpm install run: pnpm install --ignore-scripts --frozen-lockfile + - name: pnpm audit + if: ${{ matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} + run: pnpm audit --prod - name: pnpm lint if: ${{ matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} run: pnpm lint @@ -114,7 +116,7 @@ jobs: run: pnpm coverage - name: SonarCloud Scan if: ${{ needs.check-secrets.outputs.sonar-token-exists == 'true' && github.repository == 'sap/e-mobility-charging-stations-simulator' && matrix.os == 'ubuntu-latest' && matrix.node == '20.x' }} - uses: sonarsource/sonarcloud-github-action@v2.0.2 + uses: sonarsource/sonarcloud-github-action@v2.1.1 with: projectBaseDir: ui/web env: