CI(NPM): .npmrc audit=false, fund=false
Summary: Handled by dependabot. Ref D375. Signed-off-by: Yongmin Hong <revi@omglol.email> Test Plan: land it, do npm ci or watch GitHub Actions log without audit/fund data. Reviewers: O1 revi & automations, revi Reviewed By: O1 revi & automations, revi Differential Revision: https://issuetracker.revi.xyz/D384
This commit is contained in:
parent
387440faf8
commit
9c85bcb30d
GPG key ID:
1EB4F6CEEA100E94
2 changed files with 9 additions and 1 deletions
2
.github/workflows/npm-pub.yml
vendored
2
.github/workflows/npm-pub.yml
vendored
|
|
@ -25,7 +25,7 @@ jobs:
|
|||
node-version: '20.x'
|
||||
registry-url: 'https://registry.npmjs.org'
|
||||
- name: 'Install dependencies'
|
||||
run: npm ci --fund=false
|
||||
run: npm ci
|
||||
- name: 'Publish to npm'
|
||||
run: npm publish --provenance --access public
|
||||
working-directory: './npm/eslint-config'
|
||||
|
|
|
|||
8
.npmrc
Normal file
8
.npmrc
Normal file
|
|
@ -0,0 +1,8 @@
|
|||
# For 15-25% faster npm install
|
||||
# https://www.peterbe.com/plog/benchmarking-npm-install-with-or-without-audit
|
||||
# Also we have Dependabot alerts configured in the GitHub repo.
|
||||
# Moral attribution: Copyright 2024 GitHub
|
||||
# SPDX-License-Identifier: MIT
|
||||
# See also D375
|
||||
audit=false
|
||||
fund=false
|
||||
Loading…
Reference in a new issue