CI(NPM): .npmrc audit=false, fund=false
Summary: Handled by dependabot. Ref D375. Signed-off-by: Yongmin Hong <revi@omglol.email> Test Plan: land it, do npm ci or watch GitHub Actions log without audit/fund data. Reviewers: O1 revi & automations, revi Reviewed By: O1 revi & automations, revi Differential Revision: https://issuetracker.revi.xyz/D384
This commit is contained in:
parent
387440faf8
commit
9c85bcb30d
GPG key ID:
1EB4F6CEEA100E94
2 changed files with 9 additions and 1 deletions
2
.github/workflows/npm-pub.yml
vendored
2
.github/workflows/npm-pub.yml
vendored
|
|
@ -25,7 +25,7 @@ jobs:
|
||||||
node-version: '20.x'
|
node-version: '20.x'
|
||||||
registry-url: 'https://registry.npmjs.org'
|
registry-url: 'https://registry.npmjs.org'
|
||||||
- name: 'Install dependencies'
|
- name: 'Install dependencies'
|
||||||
run: npm ci --fund=false
|
run: npm ci
|
||||||
- name: 'Publish to npm'
|
- name: 'Publish to npm'
|
||||||
run: npm publish --provenance --access public
|
run: npm publish --provenance --access public
|
||||||
working-directory: './npm/eslint-config'
|
working-directory: './npm/eslint-config'
|
||||||
|
|
|
||||||
8
.npmrc
Normal file
8
.npmrc
Normal file
|
|
@ -0,0 +1,8 @@
|
||||||
|
# For 15-25% faster npm install
|
||||||
|
# https://www.peterbe.com/plog/benchmarking-npm-install-with-or-without-audit
|
||||||
|
# Also we have Dependabot alerts configured in the GitHub repo.
|
||||||
|
# Moral attribution: Copyright 2024 GitHub
|
||||||
|
# SPDX-License-Identifier: MIT
|
||||||
|
# See also D375
|
||||||
|
audit=false
|
||||||
|
fund=false
|
||||||
Loading…
Reference in a new issue