From 98a5b16604bbdd878cb6f5ea9efe840c2f5f28b5 Mon Sep 17 00:00:00 2001 From: Darius Jahandarie Date: Sun, 12 Mar 2023 20:38:57 +0900 Subject: Format ci.yml, update to checkout@v3, and restrict permissions to satisfy OSSF scorecard --- .github/workflows/ci.yml | 71 ++++++++++++++++++++++++++++-------------------- 1 file changed, 41 insertions(+), 30 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index c1c491f4..99f3f518 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -1,5 +1,8 @@ name: CI +permissions: + contents: read + on: [push, pull_request] jobs: @@ -7,33 +10,41 @@ jobs: runs-on: ubuntu-latest steps: - - name: Checkout - uses: actions/checkout@v2 - - name: Setup node - uses: actions/setup-node@v1 - with: - node-version: '16.x' - - name: Install dependencies - run: npm ci - - name: Lint - run: npm run test-lint - env: - CI: true - - name: Lint CSS - run: npm run test-lint-css - env: - CI: true - - name: Lint HTML - run: npm run test-lint-html - env: - CI: true - - name: Tests - run: npm run test-code - env: - CI: true - - name: Manifest - run: npm run test-manifest - env: - CI: true - - name: Build - run: npm run test-build + - name: Checkout + uses: actions/checkout@v3 + + - name: Setup node + uses: actions/setup-node@v1 + with: + node-version: "16.x" + + - name: Install dependencies + run: npm ci + + - name: Lint + run: npm run test-lint + env: + CI: true + + - name: Lint CSS + run: npm run test-lint-css + env: + CI: true + + - name: Lint HTML + run: npm run test-lint-html + env: + CI: true + + - name: Tests + run: npm run test-code + env: + CI: true + + - name: Manifest + run: npm run test-manifest + env: + CI: true + + - name: Build + run: npm run test-build -- cgit v1.2.3