Skip to content
Compile Dependabot Updates

Bump github/codeql-action from 4.30.8 to 4.30.9 #30

Sign in to view logs

Bump github/codeql-action from 4.30.8 to 4.30.9

Bump github/codeql-action from 4.30.8 to 4.30.9 #30

Workflow file for this run

.github/workflows/compile-dependabot-updates.yml at 54a948f
name: Compile Dependabot Updates
on:
pull_request:
jobs:
build:
# PR was opened by Dependabot PR has 'javascript' label
if: ${{ github.event.pull_request.user.login == 'dependabot[bot]' && contains(github.event.pull_request.labels.*.name, 'javascript') }}
runs-on: ubuntu-latest
permissions:
contents: read
steps:
- name: Checkout Pull Request
uses: actions/checkout@v5
with:
persist-credentials: false
ref: ${{ github.event.pull_request.head.ref }}
- name: Set up Node
uses: actions/setup-node@v5
with:
node-version-file: .nvmrc
cache: 'npm'
- name: Install dependencies
run: npm ci
- name: Build and package
run: npm run build && npm run package
- name: Upload build artifacts
uses: actions/upload-artifact@v4
with:
name: dist
path: dist/
retention-days: 1
commit-artifacts:
needs: build
runs-on: ubuntu-latest
permissions:
contents: write
pull-requests: write
steps:
- name: Checkout Pull Request
uses: actions/checkout@v5
with:
token: ${{ secrets.GITHUB_TOKEN }}
fetch-depth: 0
persist-credentials: false
ref: ${{ github.event.pull_request.head.ref }}
- name: Download build artifacts
uses: actions/download-artifact@v5
with:
name: dist
path: dist/
- name: Commit and push build artifacts
run: |
git config user.name "github-actions[bot]"
git config user.email "41898282+github-actions[bot]@users.noreply.github.com"
git add dist/
if git commit -m "[dependabot skip] Update dist/ with compiled dependencies"; then
git remote set-url origin https://x-access-token:${{ secrets.GITHUB_TOKEN }}@github.com/${{ github.repository }}.git
git push
else
echo "No changes to commit"
fi