| .. |
|
ci.yml
|
b7cc68122b
Both workflows now parse package-lock.json directly instead of trusting npm ls. The lockfile correctly marks minimatch as dev: true and doesn't contain npm/tar at all —
|
há 3 meses atrás |
|
codeql.yml
|
74e84277cf
Add CodeQL advanced setup workflow with accepted-risk exclusions
|
há 3 meses atrás |
|
issue-closed.yml
|
86ad13398a
Updated CI
|
há 3 meses atrás |
|
security.yml
|
b7cc68122b
Both workflows now parse package-lock.json directly instead of trusting npm ls. The lockfile correctly marks minimatch as dev: true and doesn't contain npm/tar at all —
|
há 3 meses atrás |
|
stale.yml
|
6ee25a2157
The only-labels: 'feedback' parameter tells the stale bot to only process issues that have the feedback label. All other issues (feature requests with future, bug
|
há 3 meses atrás |
maziggy
b7cc68122b
Both workflows now parse package-lock.json directly instead of trusting npm ls. The lockfile correctly marks minimatch as dev: true and doesn't contain npm/tar at all —