diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml new file mode 100644 index 000000000000..0e2396cb3947 --- /dev/null +++ b/.github/workflows/main.yml @@ -0,0 +1,36 @@ +# This is a basic workflow to help you get started with Actions + +name: CI + +# Controls when the workflow will run +on: + # Triggers the workflow on push or pull request events but only for the main branch + push: + branches: [ main ] + pull_request: + branches: [ main[![Auto Merge Dependency Updates](https://github.com/ppsim/docs/actions/workflows/automerge-dependencies.yml/badge.svg)](https://github.com/ppsim/docs/actions/workflows/automerge-dependencies.yml) ] + + # Allows you to run this workflow manually from the Actions tab + workflow_dispatch: + +# A workflow run is made up of one or more jobs that can run sequentially or in parallel +jobs: + # This workflow contains a single job called "build" + build: + # The type of runner that the job will run on + runs-on: ubuntu-latest + + # Steps represent a sequence of tasks that will be executed as part of the job + steps: + # Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it + - uses: actions/checkout@v2 + + # Runs a single command using the runners shell + - name: Run a one-line script + run: echo Hello, world! + + # Runs a set of commands using the runners shell + - name: Run a multi-line script + run: | + echo Add other actions to build, + echo test, and deploy your project. diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 000000000000..034e84803209 --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,21 @@ +# Security Policy + +## Supported Versions + +Use this section to tell people about which versions of your project are +currently being supported with security updates. + +| Version | Supported | +| ------- | ------------------ | +| 5.1.x | :white_check_mark: | +| 5.0.x | :x: | +| 4.0.x | :white_check_mark: | +| < 4.0 | :x: | + +## Reporting a Vulnerability + +Use this section to tell people how to report a vulnerability. + +Tell them where to go, how often they can expect to get an update on a +reported vulnerability, what to expect if the vulnerability is accepted or +declined, etc. diff --git a/package-lock.json b/package-lock.json index 9e857b82787b..44d8c5d284ea 100644 --- a/package-lock.json +++ b/package-lock.json @@ -158,7 +158,7 @@ "mkdirp": "^1.0.4", "mock-express-response": "^0.3.0", "mockdate": "^3.0.5", - "nock": "^13.2.1", + "nock": "^13.2.3", "nodemon": "^2.0.15", "npm-merge-driver-install": "^2.0.2", "object-hash": "^2.2.0", @@ -15889,9 +15889,9 @@ } }, "node_modules/nock": { - "version": "13.2.1", - "resolved": "https://registry.npmjs.org/nock/-/nock-13.2.1.tgz", - "integrity": "sha512-CoHAabbqq/xZEknubuyQMjq6Lfi5b7RtK6SoNK6m40lebGp3yiMagWtIoYaw2s9sISD7wPuCfwFpivVHX/35RA==", + "version": "13.2.3", + "resolved": "https://registry.npmjs.org/nock/-/nock-13.2.3.tgz", + "integrity": "sha512-91wGYjHrjSvrnSUwpiopbmowbIx5s+QSkqj801edTMtrFY4mAiZXP1mKlk5ZG2oZclB8/PcxJ9TJviG+akmrdw==", "dev": true, "dependencies": { "debug": "^4.1.0", @@ -35355,9 +35355,9 @@ } }, "nock": { - "version": "13.2.1", - "resolved": "https://registry.npmjs.org/nock/-/nock-13.2.1.tgz", - "integrity": "sha512-CoHAabbqq/xZEknubuyQMjq6Lfi5b7RtK6SoNK6m40lebGp3yiMagWtIoYaw2s9sISD7wPuCfwFpivVHX/35RA==", + "version": "13.2.3", + "resolved": "https://registry.npmjs.org/nock/-/nock-13.2.3.tgz", + "integrity": "sha512-91wGYjHrjSvrnSUwpiopbmowbIx5s+QSkqj801edTMtrFY4mAiZXP1mKlk5ZG2oZclB8/PcxJ9TJviG+akmrdw==", "dev": true, "requires": { "debug": "^4.1.0", diff --git a/package.json b/package.json index 9f1cecf5f092..4372389380ae 100644 --- a/package.json +++ b/package.json @@ -160,7 +160,7 @@ "mkdirp": "^1.0.4", "mock-express-response": "^0.3.0", "mockdate": "^3.0.5", - "nock": "^13.2.1", + "nock": "^13.2.3", "nodemon": "^2.0.15", "npm-merge-driver-install": "^2.0.2", "object-hash": "^2.2.0",