vultr/openclaw
1
0
Fork 0
mirror of https://github.com/openclaw/openclaw.git synced 2026-05-06 11:10:45 +00:00
Code Issues Packages Projects Releases Wiki Activity

fix(ci): make pnpm audit hook dependency-free

Browse Source
This commit is contained in:
Gustavo Madeira Santana
2026-04-14 21:10:58 -04:00
parent e49be93f2c
commit da43277cc9
2 changed files with 367 additions and 38 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
test/scripts/pnpm-audit-prod.test.ts
View File

@@ -84,6 +84,27 @@ snapshots:
});
});
it("reads inline importer dependency maps without repo dependencies", () => {
const lockfile = `lockfileVersion: '9.0'
importers:
.:
dependencies:
axios: {specifier: ^1.0.0, version: 1.0.0}
'@scope/pkg': {'version': '2.0.0(peer@4.0.0)'}
snapshots:
axios@1.0.0: {}
'@scope/pkg@2.0.0(peer@4.0.0)': {}
`;
const payload = createBulkAdvisoryPayload(collectProdResolvedPackagesFromLockfile(lockfile));
expect(payload).toEqual({
"@scope/pkg": ["2.0.0"],
axios: ["1.0.0"],
});
});
it("filters advisory findings by minimum severity", () => {
const findings = filterFindingsBySeverity(
{