Dependency Updates #17
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Dependency Updates | |
| on: | |
| schedule: | |
| - cron: '0 9 * * 1' # Every Monday at 9 AM | |
| workflow_dispatch: # Allow manual trigger | |
| jobs: | |
| update-dependencies: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout code | |
| uses: actions/checkout@v4 | |
| with: | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Setup Node.js | |
| uses: actions/setup-node@v4 | |
| with: | |
| node-version: '24' | |
| cache: 'pnpm' | |
| - name: Install pnpm | |
| uses: pnpm/action-setup@v2 | |
| with: | |
| version: 8 | |
| - name: Install dependencies | |
| run: pnpm install --frozen-lockfile | |
| - name: Check for outdated packages | |
| run: pnpm outdated || true | |
| - name: Update dependencies | |
| run: | | |
| pnpm update | |
| pnpm audit --fix || true | |
| - name: Run tests after update | |
| run: pnpm run test:run | |
| - name: Create Pull Request | |
| uses: peter-evans/create-pull-request@v5 | |
| with: | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| commit-message: 'chore: update dependencies' | |
| title: 'chore: update dependencies' | |
| body: | | |
| This PR updates dependencies to their latest versions. | |
| - Updated npm packages | |
| - Fixed security vulnerabilities | |
| - All tests passing | |
| Auto-generated by dependency update workflow. | |
| branch: chore/update-dependencies | |
| delete-branch: true |