Kenzo/Gallus_Pub
2
1
Fork 0
Code Issues Pull Requests 1 Packages Projects Releases Wiki Activity

Add dependency audit step to CI and update package dependencies.

Browse Source
This commit is contained in:
k
2026-01-07 12:35:54 +01:00
parent c3898170fd
commit 36b2053642
2 changed files with 685 additions and 466 deletions
Download Patch File Download Diff File Expand all files Collapse all files

59
.woodpecker.yml
View File

@ -1,4 +1,63 @@
steps: steps:
audit_dependencies:
image: node:20
environment:
DISCORD_WEBHOOK:
from_secret: discord_webhook
commands:
- npm install --package-lock-only
- npm audit --audit-level=moderate || AUDIT_EXIT=$?
- |
if [ ! -z "$AUDIT_EXIT" ]; then
echo ""
echo "=========================================="
echo "⚠️ WARNING: npm audit found vulnerabilities!"
echo "⚠️ Please review the security issues above"
echo "⚠️ Build continues despite vulnerabilities"
echo "=========================================="
echo ""
# Discord Benachrichtigung senden
if [ ! -z "$DISCORD_WEBHOOK" ]; then
curl -H "Content-Type: application/json" \
-d "{
\"embeds\": [{
\"title\": \"⚠️ npm audit Warnung\",
\"description\": \"Es wurden Sicherheitslücken in den Dependencies gefunden!\",
\"color\": 16744448,
\"fields\": [
{
\"name\": \"Repository\",
\"value\": \"Gallus_Pub\",
\"inline\": true
},
{
\"name\": \"Branch\",
\"value\": \"${CI_COMMIT_BRANCH}\",
\"inline\": true
},
{
\"name\": \"Commit\",
\"value\": \"${CI_COMMIT_SHA:0:7}\",
\"inline\": true
}
],
\"footer\": {
\"text\": \"Build läuft trotzdem durch\"
},
\"timestamp\": \"$(date -u +%Y-%m-%dT%H:%M:%S.000Z)\"
}]
}" \
"$DISCORD_WEBHOOK"
fi
else
echo "✓ No vulnerabilities found"
fi
- exit 0
when:
branch: main
event: push
deploy_frontend: deploy_frontend:
image: node:20 image: node:20
environment: environment:

1092
package-lock.json generated
View File

File diff suppressed because it is too large Load Diff