[Snyk] Security upgrade @sentry/nextjs from 7.12.1 to 7.13.0 #3235
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # https://docs.github.com/en/free-pro-team@latest/actions/reference/events-that-trigger-workflows#configuring-workflow-events | |
| name: Audits | |
| on: | |
| pull_request: | |
| types: [opened, synchronize, ready_for_review, review_requested] | |
| jobs: | |
| # @see https://github.com/marketplace/actions/skip-duplicate-actions | |
| pre_job: | |
| continue-on-error: true # Uncomment once integration is finished | |
| runs-on: ubuntu-latest | |
| # Map a step output to a job output | |
| outputs: | |
| should_skip: ${{ steps.skip_check.outputs.should_skip }} | |
| steps: | |
| - id: skip_check | |
| uses: fkirc/skip-duplicate-actions@master | |
| with: | |
| # All of these options are optional, so you can remove them if you are happy with the defaults | |
| concurrent_skipping: 'never' # is the default [never, same_content, outdated_runs, always] | |
| skip_after_successful_duplicate: 'true' # is the default [true, false] | |
| cancel_others: true # default false | |
| # paths_ignore: '["**/README.md", "**/docs/**"]' | |
| # paths: '[]' | |
| # do_not_skip: '["pull_request", "workflow_dispatch", "schedule"]' # default ["workflow_dispatch", "schedule"] | |
| Compressed-Size: | |
| name: Compare compressed file sizes | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Check for changes | |
| id: skip_check | |
| uses: fkirc/skip-duplicate-actions@master | |
| with: | |
| cancel_others: 'false' | |
| paths: '["src/**"]' | |
| - name: Check out the application's source code | |
| if: ${{ steps.skip_check.outputs.should_skip != 'true' }} | |
| uses: actions/checkout@v3 | |
| with: | |
| fetch-depth: 1 | |
| - name: Install pnpm | |
| uses: pnpm/action-setup@master | |
| with: | |
| version: next-7 | |
| - name: Check and report changes in the application's package size | |
| if: ${{ steps.skip_check.outputs.should_skip != 'true' }} | |
| # uses: preactjs/compressed-size-action@v2 | |
| uses: einselbst/compressed-size-action@improve-pnpm-support | |
| with: | |
| repo-token: '${{ secrets.GITHUB_TOKEN }}' | |
| collapse-unchanged: true | |
| # omit-unchanged: | |
| # use-check: | |
| # cwd: | |
| # build-script: 'npx pnpm i -P && pnpm run build' | |
| # clean-script: 'rm -rf packages/node_modules' | |
| # clean-script: 'gh-action:cleanup' | |
| # Any JS files anywhere within a dist directory: | |
| # pattern: ".next/static/**/*.js" | |
| pattern: '.next/**/*.{css,js,json,html}' | |
| # pattern: "{build/**/*.js,build/**/*.css}" # multiple paths | |
| # show-total: false | |
| # compression: brotli | |
| # Always ignore SourceMaps and node_modules: | |
| # exclude: "{**/*.map,**/cache/**}" | |
| exclude: '**/cache/**' | |
| strip-hash: "[\\/\\.-]([\\w-]{20,21})[\\.\\/]" | |
| # Ignore changes of less than 100 bytes | |
| minimum-change-threshold: 100 | |
| env: | |
| FAUNADB_SECRET: ${{ secrets.FAUNADB_SECRET }} | |
| - name: Load time cost | |
| if: ${{ steps.skip_check.outputs.should_skip != 'true' }} | |
| uses: andresz1/size-limit-action@master | |
| with: | |
| github_token: ${{ secrets.GITHUB_TOKEN }} | |
| skip_step: build | |
| env: | |
| CI_JOB_NUMBER: 1 | |
| FAUNADB_SECRET: ${{ secrets.FAUNADB_SECRET }} |