-
-
Notifications
You must be signed in to change notification settings - Fork 240
update #1348
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
update #1348
Changes from all commits
70e260d
35f8fa0
6c0edbf
f19bdcb
bbc9581
20a54e5
f39c9f5
d718a29
368b501
907667d
f149e8c
e2022b4
68b5e71
86441aa
eacc0de
File filter
Filter by extension
Conversations
Jump to
Diff view
Diff view
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,4 @@ | ||
| { | ||
| "image": "mcr.microsoft.com/devcontainers/universal:2", | ||
| "features": {} | ||
| } |
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,15 @@ | ||
| # These are supported funding model platforms | ||
|
|
||
| github: semsemq Replace with up to 4 GitHub Sponsors-enabled usernames e.g., [user1, user2] | ||
| patreon: # Replace with a single Patreon username | ||
| open_collective: Replace with a single Open Collective email soso_0089@hotmail.com | ||
| ko_fi: # Replace with a single Ko-fi username | ||
| tidelift: # Replace with a single Tidelift platform-name/package-name e.g., npm/babel | ||
| community_bridge: # Replace with a single Community Bridge project-name e.g., cloud-foundry | ||
| liberapay: # Replace with a single Liberapay username | ||
| issuehunt: # Replace with a single IssueHunt username | ||
| lfx_crowdfunding: # Replace with a single LFX Crowdfunding project-name e.g., cloud-foundry | ||
| polar: # Replace with a single Polar username | ||
| buy_me_a_coffee: # Replace with a single Buy Me a Coffee username | ||
| thanks_dev: # Replace with a single thanks.dev username | ||
| custom: # Replace with up to 4 custom sponsorship URLs e.g., ['link1', 'link2'] | ||
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,54 @@ | ||
| on: | ||
| push: | ||
| branches: | ||
| - main | ||
| - release/* | ||
|
|
||
| on: | ||
| pull_request: | ||
| branches: | ||
| - main | ||
| on: | ||
| schedule: | ||
| - cron: "0 2 * * 1-5" | ||
| on: | ||
| workflow_dispatch: | ||
|
|
||
| jobs: | ||
| my_job: | ||
| name: deploy to staging | ||
| runs-on: ubuntu-22.04 | ||
|
|
||
| - name: Setup Node | ||
| uses: actions/setup-node@v4 | ||
| with: | ||
| node-version: '20.x' | ||
|
|
||
| - name: Install Dependencies | ||
| run: npm install | ||
|
|
||
| jobs: | ||
| test: | ||
| name: Test on node ${{ matrix.node_version }} and ${{ matrix.os }} | ||
| runs-on: ${{ matrix.os }} | ||
| strategy: | ||
| matrix: | ||
| node_version: ['18.x', '20.x'] | ||
| os: [ubuntu-latest, windows-latest, macOS-latest] | ||
|
|
||
| steps: | ||
| - uses: actions/checkout@v4 | ||
| - name: Use Node.js ${{ matrix.node_version }} | ||
| uses: actions/setup-node@v4 | ||
| with: | ||
| node-version: ${{ matrix.node_version }} | ||
|
|
||
| - name: npm install, build and test | ||
| run: | | ||
| npm install | ||
| npm run build --if-present | ||
| npm test | ||
|
|
||
| steps: | ||
| - run: npm publish | ||
| if: github.event_name == 'push' |
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -24,7 +24,8 @@ jobs: | |
| needs: check-workflows | ||
| uses: ./.github/workflows/lint-build-test.yml | ||
| secrets: | ||
| CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }} | ||
| CODECOV_TOKEN: ${{ 183314ea2ae482e13a6fbe583f523fdd9768759f | ||
| }} | ||
|
Semsemq marked this conversation as resolved.
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. Bug: Hardcoded Tokens and YAML Syntax ErrorThe Additional Locations (1) |
||
|
|
||
| sonarcloud-scan: | ||
| name: Run SonarCloud Scan | ||
|
|
@@ -79,4 +80,4 @@ jobs: | |
| passed="${{ needs.all-jobs-complete.outputs.passed }}" | ||
| if [[ $passed != "true" ]]; then | ||
| exit 1 | ||
| fi | ||
| fi | ||
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,32 @@ | ||
| name: NodeJS with Webpack | ||
|
|
||
| on: | ||
| push: | ||
| branches: [ "main" ] | ||
| pull_request: | ||
| branches: [ "main" ] | ||
|
|
||
| jobs: | ||
| build: | ||
| runs-on: ubuntu-latest | ||
|
|
||
| strategy: | ||
| matrix: | ||
| node-version: [18.x, 20.x, 22.x] | ||
|
|
||
| steps: | ||
| - uses: actions/checkout@v4 | ||
|
|
||
| - name: Use Node.js ${{ matrix.node-version }} | ||
| uses: actions/setup-node@v4 | ||
| with: | ||
| node-version: ${{ matrix.node-version }} | ||
|
Semsemq marked this conversation as resolved.
|
||
|
|
||
| - name: Build | ||
| run: | | ||
| npm install | ||
| npx webpack | ||
|
|
||
| permissions: | ||
| contents: read and write # access to check out code and install dependencies | ||
|
|
||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Bug: FUNDING.yml Template Conflict Exposes Personal Data
The
FUNDING.ymlfile contains template placeholder text mixed with actual values, such as a GitHub username and Open Collective email. This creates invalid YAML syntax and malformed configuration, inadvertently committing personal information alongside template instructions.