mirror of
https://github.com/affaan-m/everything-claude-code.git
synced 2026-04-26 20:13:30 +08:00
71f282d010
Bumps [actions/setup-node](https://github.com/actions/setup-node) from 6.3.0 to 6.4.0.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](53b83947a5...48b55a011b)
---
updated-dependencies:
- dependency-name: actions/setup-node
dependency-version: 6.4.0
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
52 lines
1.4 KiB
YAML
52 lines
1.4 KiB
YAML
name: Scheduled Maintenance
|
|
|
|
on:
|
|
schedule:
|
|
- cron: '0 9 * * 1' # Weekly Monday 9am UTC
|
|
workflow_dispatch:
|
|
|
|
permissions:
|
|
contents: read
|
|
issues: write
|
|
pull-requests: write
|
|
|
|
jobs:
|
|
dependency-check:
|
|
name: Check Dependencies
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
|
|
- uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
|
|
with:
|
|
node-version: '20.x'
|
|
- name: Check for outdated packages
|
|
run: npm outdated || true
|
|
|
|
security-audit:
|
|
name: Security Audit
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
|
|
- uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
|
|
with:
|
|
node-version: '20.x'
|
|
- name: Run security audit
|
|
run: |
|
|
if [ -f package-lock.json ]; then
|
|
npm ci
|
|
npm audit --audit-level=high
|
|
else
|
|
echo "No package-lock.json found; skipping npm audit"
|
|
fi
|
|
|
|
stale:
|
|
name: Stale Issues/PRs
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/stale@b5d41d4e1d5dceea10e7104786b73624c18a190f # v10.2.0
|
|
with:
|
|
stale-issue-message: 'This issue is stale due to inactivity.'
|
|
stale-pr-message: 'This PR is stale due to inactivity.'
|
|
days-before-stale: 30
|
|
days-before-close: 7
|