chore: update .gitignore with security and IDE exclusions #1
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: CI | |
| on: | |
| push: | |
| branches: [ master, main, develop ] | |
| pull_request: | |
| branches: [ master, main, develop ] | |
| jobs: | |
| test: | |
| runs-on: ubuntu-latest | |
| strategy: | |
| matrix: | |
| node-version: [18.x, 20.x, 22.x] | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Use Node.js ${{ matrix.node-version }} | |
| uses: actions/setup-node@v4 | |
| with: | |
| node-version: ${{ matrix.node-version }} | |
| cache: 'yarn' | |
| - name: Install dependencies | |
| run: yarn install --frozen-lockfile | |
| - name: Run linting | |
| run: yarn lint | |
| continue-on-error: true | |
| - name: Run tests | |
| run: yarn test | |
| - name: Build project | |
| run: yarn build | |
| - name: Check TypeScript compilation | |
| run: yarn tsc --noEmit | |
| security-audit: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v4 | |
| - name: Use Node.js | |
| uses: actions/setup-node@v4 | |
| with: | |
| node-version: '20.x' | |
| cache: 'yarn' | |
| - name: Install dependencies | |
| run: yarn install --frozen-lockfile | |
| - name: Run security audit | |
| run: yarn audit | |
| continue-on-error: true | |
| - name: Check for known vulnerabilities | |
| run: | | |
| # Check if yarn audit finds any vulnerabilities | |
| if ! yarn audit --level moderate; then | |
| echo "::warning::Security vulnerabilities found. Please review and fix." | |
| exit 1 | |
| fi |