Skip to content

Commit f5b75e4

Browse files
committed
fix: update CI/CD workflow paths and CodeQL actions
- Fix Node.js cache dependency path from ui/web to src/ui/web - Update all npm install/lint/test paths to use src/ui/web - Update CodeQL actions from v3 to v4 (deprecation fix) - Add required permissions to security job for SARIF upload - Fix coverage report path in codecov action
1 parent 11a21f8 commit f5b75e4

2 files changed

Lines changed: 13 additions & 9 deletions

File tree

.github/workflows/ci-cd.yml

Lines changed: 10 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -40,7 +40,7 @@ jobs:
4040
with:
4141
node-version: ${{ matrix.node-version }}
4242
cache: 'npm'
43-
cache-dependency-path: ui/web/package-lock.json
43+
cache-dependency-path: src/ui/web/package-lock.json
4444

4545
- name: Install Python dependencies
4646
run: |
@@ -50,7 +50,7 @@ jobs:
5050
5151
- name: Install Node.js dependencies
5252
run: |
53-
cd ui/web
53+
cd src/ui/web
5454
npm ci
5555
5656
- name: Run Python linting
@@ -102,7 +102,7 @@ jobs:
102102
103103
- name: Run Node.js linting
104104
run: |
105-
cd ui/web
105+
cd src/ui/web
106106
# Create basic ESLint config if it doesn't exist
107107
if [ ! -f .eslintrc.js ]; then
108108
cat > .eslintrc.js << EOF
@@ -163,7 +163,7 @@ jobs:
163163
164164
- name: Run Node.js tests
165165
run: |
166-
cd ui/web
166+
cd src/ui/web
167167
# Create a basic test if none exist
168168
if [ ! -f src/App.test.tsx ]; then
169169
cat > src/App.test.tsx << EOF
@@ -185,7 +185,7 @@ jobs:
185185
- name: Upload coverage reports
186186
uses: codecov/codecov-action@v3
187187
with:
188-
files: ./coverage.xml,./ui/web/coverage/lcov.info
188+
files: ./coverage.xml,./src/ui/web/coverage/lcov.info
189189
flags: unittests
190190
name: codecov-umbrella
191191
fail_ci_if_error: false
@@ -196,6 +196,10 @@ jobs:
196196
security:
197197
name: Security Scan
198198
runs-on: ubuntu-latest
199+
permissions:
200+
contents: read
201+
security-events: write
202+
actions: read
199203
steps:
200204
- name: Checkout code
201205
uses: actions/checkout@v4
@@ -209,7 +213,7 @@ jobs:
209213
output: 'trivy-results.sarif'
210214

211215
- name: Upload Trivy scan results
212-
uses: github/codeql-action/upload-sarif@v3
216+
uses: github/codeql-action/upload-sarif@v4
213217
with:
214218
sarif_file: 'trivy-results.sarif'
215219

.github/workflows/codeql.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -27,15 +27,15 @@ jobs:
2727
uses: actions/checkout@v4
2828

2929
- name: Initialize CodeQL
30-
uses: github/codeql-action/init@v3
30+
uses: github/codeql-action/init@v4
3131
with:
3232
languages: ${{ matrix.language }}
3333
queries: security-and-quality
3434

3535
- name: Autobuild
36-
uses: github/codeql-action/autobuild@v3
36+
uses: github/codeql-action/autobuild@v4
3737

3838
- name: Perform CodeQL Analysis
39-
uses: github/codeql-action/analyze@v3
39+
uses: github/codeql-action/analyze@v4
4040
with:
4141
category: "/language:${{matrix.language}}"

0 commit comments

Comments
 (0)