Skip to content

Bump step-security/harden-runner from 2.9.1 to 2.10.1 #189

Bump step-security/harden-runner from 2.9.1 to 2.10.1

Bump step-security/harden-runner from 2.9.1 to 2.10.1 #189

name: PR Checks
on:
workflow_dispatch:
pull_request:
types:
- opened
- reopened
- synchronize
concurrency:
group: pr-checks-${{ github.workflow }}-${{ github.head_ref || github.run_id }}
cancel-in-progress: true
permissions:
contents: read
pull-requests: write
jobs:
test:
name: Node v${{ matrix.node-version }} Tests
runs-on: nft-accelerators-linux-medium
strategy:
matrix:
node-version: [ 18, 20 ]
steps:
- name: Harden Runner
uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
with:
egress-policy: audit
- name: Checkout repository
uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
- name: Setup Node ${{ matrix.node-version }}
uses: actions/setup-node@60edb5dd545a775178f52524783378180af0d1f8 # v4.0.2
with:
node-version: ${{ matrix.node-version }}
- name: Install packages
run: npm ci
- name: Run Jest Tests
run: npm run test
- name: Publish Test Report
uses: step-security/publish-unit-test-result-action@4519d7c9f71dd765f8bbb98626268780f23bab28 # v2.17.0
if: ${{ !cancelled() }}
with:
check_name: Jest Node ${{ matrix.node-version }} Test Results
check_run_disabled: true
json_thousands_separator: ","
junit_files: "**/junit*.xml"