Bump eslint from 8.53.0 to 8.56.0 (#134)

fabasoad · Dec 30, 2023 · c21ae95 · c21ae95
1 parent e5337e3
commit c21ae95
Show file tree

Hide file tree

Showing 13 changed files with 689 additions and 1,246 deletions.
diff --git a/.github/workflows/linting.yml b/.github/workflows/linting.yml
@@ -0,0 +1,56 @@
+---
+name: Linting
+
+on: # yamllint disable-line rule:truthy
+  pull_request: {}
+  push:
+    branches:
+      - main
+
+jobs:
+  eslint:
+    name: ESLint
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout ${{ github.repository }}
+        uses: actions/checkout@v4
+      - uses: actions/setup-node@v3
+        with:
+          node-version: "20.10.0"
+      - name: Cache yarn dependencies
+        id: yarn-cache
+        uses: actions/cache@v3
+        with:
+          path: |
+            .yarn/cache
+            node_modules
+          key: ${{ runner.os }}-yarn-${{ hashFiles('**/yarn.lock') }}-${{ hashFiles('**/.yarnrc.yml') }}
+          restore-keys: |
+            ${{ runner.os }}-yarn-
+      - name: Compile
+        if: ${{ steps.yarn-cache.outputs.cache-hit != 'true' }}
+        run: yarn install
+      - name: Run ESLint
+        uses: sibiraj-s/action-eslint@v3
+        with:
+          all-files: "true"
+          ignore-patterns: |
+            .github
+            .yarn
+            coverage
+            dist
+            node_modules
+          eslint-args: "-o eslint-results.sarif -f ${{ github.workspace }}/node_modules/@microsoft/eslint-formatter-sarif/sarif.js"
+          extensions: "js,jsx,ts,tsx"
+          annotations: true
+      - name: Upload to GHAS
+        if: always()
+        uses: github/codeql-action/upload-sarif@v2
+        with:
+          category: "eslint"
+          sarif_file: "eslint-results.sarif"
+  pre-commit:
+    name: Pre-commit
+    uses: fabasoad/reusable-workflows/.github/workflows/wf-pre-commit.yml@main
+    with:
+      skip-hooks: "audit, build, eslint, test, snyk-test"
diff --git a/.github/workflows/pre-commit.yml b/.github/workflows/pre-commit.yml
diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
@@ -1,29 +1,36 @@
 ---
 name: Security
 
-on:
+on: # yamllint disable-line rule:truthy
   push:
     branches:
       - 'main'
   pull_request:
 
+defaults:
+  run:
+    shell: sh
+
 jobs:
-  codeql:
-    name: CodeQL
+  code-scanning:
+    name: Code scanning
     runs-on: ubuntu-latest
-    strategy:
-      fail-fast: false
-      matrix:
-        language: ['javascript']
     steps:
       - name: Checkout ${{ github.repository }}
         uses: actions/checkout@v4
       - name: Initialize CodeQL
         uses: github/codeql-action/init@v2
         with:
-          languages: ${{ matrix.language }}
+          languages: "javascript"
       - name: Perform CodeQL Analysis
+        id: codeql-analysis
         uses: github/codeql-action/analyze@v2
+      - name: Upload to GHAS
+        if: always()
+        uses: github/codeql-action/upload-sarif@v2
+        with:
+          category: "code-scanning"
+          sarif_file: "${{ steps.codeql-analysis.outputs.sarif-output }}"
   yarn-audit:
     name: Yarn audit
     runs-on: ubuntu-latest
@@ -32,4 +39,21 @@ jobs:
         uses: actions/checkout@v4
       - name: Yarn audit
         run: yarn npm audit --all
-        shell: sh
+  directory-scanning:
+    name: Directory scanning
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout ${{ github.repository }}
+        uses: actions/checkout@v4
+      - name: Scan current project
+        id: scan-directory
+        uses: anchore/scan-action@v3
+        with:
+          by-cve: "true"
+          path: "."
+      - name: Upload to GHAS
+        if: always()
+        uses: github/codeql-action/upload-sarif@v2
+        with:
+          category: "directory-scanning"
+          sarif_file: "${{ steps.scan-directory.outputs.sarif }}"
diff --git a/.github/workflows/unit-tests.yml b/.github/workflows/unit-tests.yml
@@ -12,8 +12,8 @@ defaults:
     shell: sh
 
 jobs:
-  unit_tests:
-    name: Lint and Test
+  unit-tests:
+    name: Unit Tests
     timeout-minutes: 5
     runs-on: ubuntu-latest
     steps:

diff --git a/.grype.yaml b/.grype.yaml
@@ -0,0 +1,2 @@
+ignore:
+  - vulnerability: CVE-2022-25883
diff --git a/.snyk b/.snyk
@@ -0,0 +1,10 @@
+# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
+version: v1.25.0
+# ignores vulnerabilities until expiry date; change duration by modifying expiry date
+ignore:
+  SNYK-JS-AXIOS-6124857:
+    - '*':
+        reason: Introduced by deepl-node@1.11.0 > axios@1.6.2.
+        expires: 2024-01-01T00:00:00.000Z
+        created: 2023-12-30T09:15:43.424Z
+patch: {}
diff --git a/.yarn/plugins/@yarnpkg/plugin-interactive-tools.cjs b/.yarn/plugins/@yarnpkg/plugin-interactive-tools.cjs
diff --git a/.yarn/plugins/@yarnpkg/plugin-version.cjs b/.yarn/plugins/@yarnpkg/plugin-version.cjs
diff --git a/.yarnrc.yml b/.yarnrc.yml
@@ -3,9 +3,5 @@ nodeLinker: node-modules
 plugins:
   - path: .yarn/plugins/@yarnpkg/plugin-outdated.cjs
     spec: "https://mskelton.dev/yarn-outdated/v2"
-  - path: .yarn/plugins/@yarnpkg/plugin-version.cjs
-    spec: "@yarnpkg/plugin-version"
-  - path: .yarn/plugins/@yarnpkg/plugin-interactive-tools.cjs
-    spec: "@yarnpkg/plugin-interactive-tools"
 
 yarnPath: .yarn/releases/yarn-4.0.2.cjs