Bump dompurify from 3.1.0 to 3.1.7 #41
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: release-pr-package | |
# SECURITY NOTE: | |
# pull_request_target is used to run the workflow on pull requests from ANY FORK! | |
# This is required to have access to the secret to publish the PR to npm. | |
# For that reason, any outside collaborator requires approval from a contributor. | |
# https://github.com/redhat-developer/red-hat-developer-hub-theme/settings/actions | |
on: | |
pull_request_target: | |
types: [opened, synchronize, reopened] | |
jobs: | |
release-pr-package: | |
runs-on: ubuntu-latest | |
steps: | |
- name: Checkout | |
uses: actions/checkout@v4 | |
with: | |
repository: ${{ github.event.pull_request.head.repo.full_name }} | |
ref: ${{ github.event.pull_request.head.ref }} | |
fetch-depth: 0 | |
- name: Setup Node.js | |
uses: actions/setup-node@v4 | |
with: | |
node-version: '18.x' | |
registry-url: 'https://registry.npmjs.org' | |
- name: Install dependencies | |
run: npm ci | |
- name: Build | |
run: npm run build | |
- name: Lint | |
run: npm run lint | |
- name: Test | |
run: npm test | |
- name: Publish to npm | |
run: | | |
# bash | |
full_sha="${{ github.event.pull_request.head.sha }}" | |
short_sha="${full_sha::7}" | |
version="0.0.0-pr-${{ github.event.number }}-${short_sha}" | |
npm version "$version" --no-git-tag-version | |
npm publish --access=public --tag=latest-pr | |
env: | |
NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} | |
- name: Add comment | |
uses: actions/github-script@v7 | |
with: | |
script: | | |
// js | |
full_sha="${{ github.event.pull_request.head.sha }}" | |
short_sha=full_sha.slice(0, 7) | |
version=`0.0.0-pr-${{ github.event.number }}-${short_sha}` | |
github.rest.issues.createComment({ | |
issue_number: context.issue.number, | |
owner: context.repo.owner, | |
repo: context.repo.repo, | |
body: `New package is available at: \`@redhat-developer/red-hat-developer-hub-theme@${version}\`` | |
}) |