update workflow

2 years ago · 319e6cea3e
5 changed files with 71 additions and 89 deletions
--- a/.github/codeql/codeql-config.yml
+++ b/.github/codeql/codeql-config.yml
@ -1,5 +1,4 @@
 name: "CodeQL config"

 paths-ignore:
-  - docs/assets/plugins/
-  - plugins/
+  - dist
--- a/.github/workflows/bundlewatch.yml
+++ b/.github/workflows/bundlewatch.yml
@ -0,0 +1,43 @@
+name: Bundlewatch
+
+on:
+  push:
+    branches-ignore:
+      - "dependabot/**"
+  pull_request:
+  workflow_dispatch:
+
+env:
+  FORCE_COLOR: 2
+  NODE: 18
+
+permissions:
+  contents: read
+
+jobs:
+  bundlewatch:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Clone repository
+        uses: actions/checkout@v3
+        with:
+          persist-credentials: false
+
+      - name: Set up Node.js
+        uses: actions/setup-node@v3
+        with:
+          node-version: "${{ env.NODE }}"
+          cache: npm
+
+      - name: Install npm dependencies
+        run: npm ci
+
+      - name: Run dist
+        run: npm run compile
+
+      - name: Run bundlewatch
+        run: npm run bundlewatch
+        env:
+          BUNDLEWATCH_GITHUB_TOKEN: "${{ secrets.BUNDLEWATCH_GITHUB_TOKEN }}"
+          CI_BRANCH_BASE: v4-dev
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@ -1,64 +0,0 @@
-name: CI
-
-on:
-  push:
-    branches:
-      - master
-      - v4-dev
-  pull_request:
-    branches:
-      - "**"
-
-env:
-  FORCE_COLOR: 2
-
-jobs:
-  run:
-    runs-on: ${{ matrix.os }}
-
-    strategy:
-      fail-fast: false
-      matrix:
-        node:
-          - "14.x"
-          - "16.x"
-          - "18.x"
-        os:
-          - "ubuntu-latest"
-          - "macos-latest"
-          - "windows-latest"
-
-    steps:
-      - name: Clone repository
-        uses: actions/checkout@v2
-
-      - name: Use Node.js ${{ matrix.node }}
-        uses: actions/setup-node@v2
-        with:
-          node-version: ${{ matrix.node }}
-
-      - name: Get npm cache directory
-        id: npm-cache
-        run: |
-          echo "::set-output name=dir::$(npm config get cache)"
-
-      - name: Set up npm cache
-        uses: actions/cache@v2
-        with:
-          path: ${{ steps.npm-cache.outputs.dir }}
-          key: ${{ runner.os }}-node-v${{ matrix.node }}-${{ hashFiles('package.json') }}-${{ hashFiles('package-lock.json') }}}
-          restore-keys: |
-            ${{ runner.os }}-node-v${{ matrix.node }}-${{ hashFiles('package.json') }}-${{ hashFiles('package-lock.json') }}
-            ${{ runner.os }}-node-v${{ matrix.node }}-
-
-      - name: Install npm dependencies
-        run: npm ci
-
-      - name: Build files
-        run: npm run compile
-
-      - name: Run bundlewatch
-        run: npm run bundlewatch
-        if: startsWith(matrix.os, 'ubuntu') && startsWith(matrix.node, '16')
-        env:
-          BUNDLEWATCH_GITHUB_TOKEN: "${{ secrets.BUNDLEWATCH_GITHUB_TOKEN }}"
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@ -3,33 +3,42 @@ name: "CodeQL"
 on:
  push:
    branches:
-      - master
+      - v4-dev
      - "!dependabot/**"
  pull_request:
    # The branches below must be a subset of the branches above
    branches:
-      - master
+      - v4-dev
+      - "!dependabot/**"
  schedule:
    - cron: "0 0 * * 0"
+  workflow_dispatch:

 jobs:
  analyze:
    name: Analyze
    runs-on: ubuntu-latest
+    permissions:
+      security-events: write

    steps:
      - name: Checkout repository
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
+        with:
+          persist-credentials: false

      # Initializes the CodeQL tools for scanning.
      - name: Initialize CodeQL
-        uses: github/codeql-action/init@v1
+        uses: github/codeql-action/init@v2
        with:
          languages: "javascript"
          config-file: ./.github/codeql/codeql-config.yml
+          queries: +security-and-quality

      - name: Autobuild
-        uses: github/codeql-action/autobuild@v1
+        uses: github/codeql-action/autobuild@v2

      - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@v1
+        uses: github/codeql-action/analyze@v2
+        with:
+          category: "/language:javascript"
--- a/.github/workflows/lint.yml
+++ b/.github/workflows/lint.yml
@ -2,16 +2,17 @@ name: Lint

 on:
  push:
-    branches:
-      - master
-      - v4-dev
+    branches-ignore:
+      - "dependabot/**"
  pull_request:
-    branches:
-      - "**"
+  workflow_dispatch:

 env:
  FORCE_COLOR: 2
-  NODE: 18.x
+  NODE: 18
+
+permissions:
+  contents: read

 jobs:
  run:
@ -19,21 +20,15 @@ jobs:

    steps:
      - name: Clone repository
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
+        with:
+          persist-credentials: false

      - name: Set up Node.js
-        uses: actions/setup-node@v2
+        uses: actions/setup-node@v3
        with:
          node-version: "${{ env.NODE }}"
-
-      - name: Set up npm cache
-        uses: actions/cache@v2
-        with:
-          path: ~/.npm
-          key: ${{ runner.os }}-node-v${{ env.NODE }}-${{ hashFiles('package.json') }}-${{ hashFiles('package-lock.json') }}}
-          restore-keys: |
-            ${{ runner.os }}-node-v${{ env.NODE }}-${{ hashFiles('package.json') }}-${{ hashFiles('package-lock.json') }}
-            ${{ runner.os }}-node-v${{ env.NODE }}-
+          cache: npm

      - name: Install npm dependencies
        run: npm ci