Test

5.4.28 #1465

Workflow file for this run

	name: Test
	on:
	push:
	pull_request:
	schedule: [{ cron: "0 0 10 * " }] # monthly https://crontab.guru/#0_0_10__*
	workflow_dispatch:

	permissions: {}

	jobs:
	test:
	uses: nodenv/.github/.github/workflows/test.yml@v7
	with: { superlinter: false } # TODO renable superlinter
	permissions:
	contents: read
	packages: read
	id-token: write
	security-events: write
	statuses: write

	# https://github.com/redhat-plumbers-in-action/differential-shellcheck
	shellcheck:
	permissions: { contents: read, security-events: write }
	runs-on: ubuntu-latest
	steps:
	- uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
	with: { egress-policy: audit }
	- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
	with: { fetch-depth: 0 }
	- uses: redhat-plumbers-in-action/differential-shellcheck@d965e66ec0b3b2f821f75c8eff9b12442d9a7d1e # v5.5.6
	with:
	severity: error # TODO strengthen
	token: ${{ secrets.GITHUB_TOKEN }}

	lts:
	runs-on: ubuntu-latest
	steps:
	- uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
	with: { egress-policy: audit }
	- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
	- run: npm ci

	- run: npm run lint:lts

	checksums:
	runs-on: ubuntu-latest
	steps:
	- uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
	with: { egress-policy: audit }
	- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
	with: { fetch-depth: 0 }
	- run: npm ci

	# FIXME workaround https://github.com/actions/checkout/issues/910
	- if: github.event_name == 'pull_request'
	run: npm run lint:checksums -- origin/${{github.base_ref}}
	- run: npm run lint:checksums -- HEAD^
	if: github.event_name == 'push'

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

5.4.28 #1465

Workflow file

5.4.28 #1465

Uh oh!

Workflow file for this run