Merge pull request #42 from step-security/fix_Vulnerabilities_Through…

…_Workflow workflow to fix vulnerabilities
step-security · Feb 3, 2025 · 9f628af · 9f628af
2 parents 8b8194f + f44de4c
commit 9f628af
Showing 1 changed file with 24 additions and 0 deletions.
diff --git a/.github/workflows/audit-package.yml b/.github/workflows/audit-package.yml
@@ -0,0 +1,24 @@
+name: NPM Audit Fix Run
+
+on:
+  workflow_dispatch:
+    inputs:
+      force:
+        description: "Use --force flag for npm audit fix?"
+        required: true
+        type: boolean
+      base_branch:
+        description: "Specify a base branch"
+        required: false
+        default: "main"
+
+jobs:
+  audit-fix:
+    uses: step-security/reusable-workflows/.github/workflows/npm_audit_fix.yml@v1
+    with:
+      force: ${{ inputs.force }}
+      base_branch: ${{ inputs.base_branch }}
+
+permissions:
+  contents: write
+  pull-requests: write