Skip to content
Unit

security: bump undici from 5.28.5 to 5.29.0 in the npm_and_yarn group… #444

Sign in to view logs

security: bump undici from 5.28.5 to 5.29.0 in the npm_and_yarn group…

security: bump undici from 5.28.5 to 5.29.0 in the npm_and_yarn group… #444

Workflow file for this run

.github/workflows/unit.yml at b497d55
name: 'Unit'
on:
push:
branches:
- 'main'
- 'release/**/*'
pull_request:
branches:
- 'main'
- 'release/**/*'
workflow_dispatch:
concurrency:
group: '${{ github.workflow }}-${{ github.head_ref || github.ref }}'
cancel-in-progress: true
jobs:
unit:
runs-on: '${{ matrix.os }}'
permissions:
contents: 'read'
id-token: 'write'
strategy:
fail-fast: false
matrix:
os:
- 'ubuntu-latest'
- 'windows-latest'
- 'macos-latest'
steps:
- uses: 'actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683' # ratchet:actions/checkout@v4
- uses: 'actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a' # ratchet:actions/setup-node@v4
with:
node-version: '20.12.x' # https://github.com/nodejs/node/issues/53033
- name: 'npm build'
run: 'npm ci && npm run build'
- name: 'npm lint'
# There's no need to run the linter for each operating system, since it
# will find the same thing 3x and clog up the PR review.
if: ${{ matrix.os == 'ubuntu-latest' }}
run: 'npm run lint'
# Only authenticate if this is a full CI run.
- if: ${{ github.event_name == 'push' || github.repository == github.event.pull_request.head.repo.full_name }}
uses: 'google-github-actions/auth@v2' # ratchet:exclude
with:
workload_identity_provider: '${{ vars.WIF_PROVIDER_NAME }}'
service_account: '${{ vars.SERVICE_ACCOUNT_EMAIL }}'
# The secrets will only be injected in pushes to main or from maintainers.
# If they aren't present, the associated steps are skipped.
- name: 'npm test'
run: 'npm run test'
env:
UPLOAD_CLOUD_STORAGE_TEST_BUCKET: '${{ vars.BUCKET_NAME }}'
UPLOAD_CLOUD_STORAGE_TEST_PROJECT: '${{ vars.PROJECT_ID }}'