mirror of
https://github.com/affaan-m/everything-claude-code.git
synced 2026-04-01 22:53:27 +08:00
09398b42c2
Bumps [actions/setup-node](https://github.com/actions/setup-node) from 4.4.0 to 6.3.0.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](49933ea528...53b83947a5)
---
updated-dependencies:
- dependency-name: actions/setup-node
dependency-version: 6.3.0
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
52 lines
1.4 KiB
YAML
52 lines
1.4 KiB
YAML
name: Scheduled Maintenance
|
|
|
|
on:
|
|
schedule:
|
|
- cron: '0 9 * * 1' # Weekly Monday 9am UTC
|
|
workflow_dispatch:
|
|
|
|
permissions:
|
|
contents: read
|
|
issues: write
|
|
pull-requests: write
|
|
|
|
jobs:
|
|
dependency-check:
|
|
name: Check Dependencies
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
|
|
- uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
|
|
with:
|
|
node-version: '20.x'
|
|
- name: Check for outdated packages
|
|
run: npm outdated || true
|
|
|
|
security-audit:
|
|
name: Security Audit
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
|
|
- uses: actions/setup-node@53b83947a5a98c8d113130e565377fae1a50d02f # v6.3.0
|
|
with:
|
|
node-version: '20.x'
|
|
- name: Run security audit
|
|
run: |
|
|
if [ -f package-lock.json ]; then
|
|
npm ci
|
|
npm audit --audit-level=high
|
|
else
|
|
echo "No package-lock.json found; skipping npm audit"
|
|
fi
|
|
|
|
stale:
|
|
name: Stale Issues/PRs
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/stale@5bef64f19d7facfb25b37b414482c7164d639639 # v9
|
|
with:
|
|
stale-issue-message: 'This issue is stale due to inactivity.'
|
|
stale-pr-message: 'This PR is stale due to inactivity.'
|
|
days-before-stale: 30
|
|
days-before-close: 7
|