chore(deps-dev): bump @types/node from 24.10.0 to 24.10.1 #113

Workflow file for this run

.github/workflows/security.yml at 4e6fcba

	name: Security

	on:
	push:
	branches: [main, develop]
	pull_request:
	branches: [main, develop]
	schedule:
	- cron: '0 0 * * 1' # Weekly on Monday

	jobs:
	security:
	runs-on: ubuntu-latest
	permissions:
	contents: read
	security-events: write

	steps:
	- name: Checkout code
	uses: actions/checkout@v4

	- name: Run Trivy vulnerability scanner
	uses: aquasecurity/trivy-action@master
	with:
	scan-type: 'fs'
	scan-ref: '.'
	format: 'sarif'
	output: 'trivy-results.sarif'

	- name: Upload Trivy scan results to GitHub Security tab
	uses: github/codeql-action/upload-sarif@v4
	with:
	sarif_file: 'trivy-results.sarif'
	continue-on-error: true

	codeql:
	runs-on: ubuntu-latest
	permissions:
	actions: read
	contents: read
	security-events: write

	strategy:
	fail-fast: false
	matrix:
	language: ['javascript']

	steps:
	- name: Checkout repository
	uses: actions/checkout@v4

	- name: Initialize CodeQL
	uses: github/codeql-action/init@v4
	with:
	languages: ${{ matrix.language }}

	- name: Setup Node.js
	uses: actions/setup-node@v4
	with:
	node-version: '24'

	- name: Install pnpm
	uses: pnpm/action-setup@v4
	with:
	version: 8

	- name: Install dependencies
	run: pnpm install

	- name: Build
	run: pnpm run build

	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@v4
	continue-on-error: true

	- name: Check if Advanced Security is enabled
	if: failure()
	run: \|
	echo "⚠️ CodeQL analysis failed. This is likely because GitHub Advanced Security is not enabled for this repository."
	echo "To enable CodeQL code scanning:"
	echo "1. Go to repository Settings > Security & analysis"
	echo "2. Enable 'Code scanning' under Code security and analysis"
	echo "3. Or upgrade to GitHub Advanced Security if using GitHub Enterprise"
	echo ""
	echo "For now, the workflow will continue with other security checks."

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps-dev): bump @types/node from 24.10.0 to 24.10.1 #113

Workflow file

chore(deps-dev): bump @types/node from 24.10.0 to 24.10.1 #113

Uh oh!

Workflow file for this run