Dependency Updates #5
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Dependency Updates | |
| on: | |
| schedule: | |
| - cron: "0 0 * * MON" # Weekly on Mondays | |
| workflow_dispatch: | |
| jobs: | |
| update-dependencies: | |
| name: Update Dependencies | |
| runs-on: ubuntu-latest | |
| permissions: | |
| contents: write | |
| pull-requests: write | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v4 | |
| - name: Setup Node.js | |
| uses: actions/setup-node@v4 | |
| with: | |
| node-version: 20 | |
| cache: "npm" | |
| - name: Update dependencies | |
| run: | | |
| npm update | |
| npm audit fix --force | |
| - name: Run tests | |
| run: npm run verify | |
| - name: Create Pull Request | |
| uses: peter-evans/create-pull-request@v5 | |
| with: | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| commit-message: "chore(deps): update dependencies" | |
| title: "chore(deps): update dependencies" | |
| body: | | |
| Automated dependency update | |
| - Updated npm dependencies | |
| - Ran security audit fixes | |
| - All tests pass | |
| branch: deps/automated-update | |
| delete-branch: true |