Skip to content

feat: add publish action#40

Merged
l1pz merged 5 commits into
mainfrom
publish-action
Mar 16, 2026
Merged

feat: add publish action#40
l1pz merged 5 commits into
mainfrom
publish-action

Conversation

@l1pz
Copy link
Copy Markdown
Contributor

@l1pz l1pz commented Mar 4, 2026
edited by Aleksey28
Loading

aleks-pro
aleks-pro reviewed Mar 6, 2026
View reviewed changes
Comment thread actions/publish/action.yml Outdated
audit-level:
description: 'The level of vulnerabilities to fail on (low, moderate, high, critical)'
required: false
default: 'critical'
Copy link
Copy Markdown
Collaborator

@aleks-pro aleks-pro Mar 6, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What dou you think if we make low level as default value (here and for workflow_call as well)?

Comment thread actions/publish/action.yml Outdated

- name: Check for vulnerable dependencies
id: npm_audit
run: npm audit --omit=dev --audit-level=${{ inputs.audit-level }}
Copy link
Copy Markdown
Collaborator

@aleks-pro aleks-pro Mar 6, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm not sure if we always need to ignore dev dependencies check. I'd rather create an option for this and check them by default

@l1pz l1pz merged commit 67e9da6 into main Mar 16, 2026
1 check passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aleks-pro aleks-pro aleks-pro approved these changes

@Bayheck Bayheck Bayheck approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@l1pz @aleks-pro @Bayheck