Closed katelynsills closed 5 years ago
This PR adds a CircleCI job that runs npm audit against both the top package.json and the integration-test package.json.
npm audit
If anything is automatically fixable (i.e. npm audit --fix is able to make changes), it submits a PR.
npm audit --fix
If something comes up in the audit but is not automatically fixable, the CircleCI job fails and we should check it to see what we need to do.
Description
This PR adds a CircleCI job that runs
npm audit
against both the top package.json and the integration-test package.json.If anything is automatically fixable (i.e.
npm audit --fix
is able to make changes), it submits a PR.If something comes up in the audit but is not automatically fixable, the CircleCI job fails and we should check it to see what we need to do.