Skip to content
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
61 changes: 61 additions & 0 deletions .github/workflows/ci.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,61 @@
name: CI

on:
push:
branches:
- main
- master
pull_request:

jobs:
quality:
name: Lint, unit tests and build
runs-on: ubuntu-latest
timeout-minutes: 20

steps:
- name: Checkout
uses: actions/checkout@v4

- name: Setup Node.js
uses: actions/setup-node@v4
with:
node-version: 20
cache: npm

- name: Install dependencies
run: npm ci

- name: Lint
run: npm run lint

- name: Unit tests
run: npm test

- name: Build
run: npm run build

e2e-smoke:
name: Playwright smoke
runs-on: ubuntu-latest
timeout-minutes: 25
needs: quality

steps:
- name: Checkout
uses: actions/checkout@v4

- name: Setup Node.js
uses: actions/setup-node@v4
with:
node-version: 20
cache: npm

- name: Install dependencies
run: npm ci

- name: Install Playwright Chromium
run: npx playwright install --with-deps chromium

- name: Run smoke tests
run: npm run test:e2e
46 changes: 46 additions & 0 deletions .github/workflows/codeql.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,46 @@
name: CodeQL

on:
push:
branches:
- main
- master
pull_request:
schedule:
- cron: '0 4 * * 1'

permissions:
actions: read
contents: read
security-events: write

jobs:
analyze:
name: Analyze (JavaScript / TypeScript)
runs-on: ubuntu-latest
timeout-minutes: 30

steps:
- name: Checkout
uses: actions/checkout@v4

- name: Initialize CodeQL
uses: github/codeql-action/init@v3
with:
languages: javascript-typescript
build-mode: none

- name: Setup Node.js
uses: actions/setup-node@v4
with:
node-version: 20
cache: npm

- name: Install dependencies
run: npm ci

- name: Autobuild
uses: github/codeql-action/autobuild@v3

- name: Perform CodeQL analysis
uses: github/codeql-action/analyze@v3
29 changes: 29 additions & 0 deletions .github/workflows/dependency-review.yml
Original file line number Diff line number Diff line change
@@ -0,0 +1,29 @@
name: Dependency Review

on:
pull_request:

permissions:
contents: read

jobs:
dependency-review:
name: Dependency review
runs-on: ubuntu-latest
steps:
- name: Checkout
uses: actions/checkout@v4

- name: Dependency review
id: dependency_review
continue-on-error: true
uses: actions/dependency-review-action@v4
with:
fail-on-severity: high
deny-licenses: GPL-2.0, AGPL-1.0, AGPL-3.0

- name: Explain dependency graph requirement
if: steps.dependency_review.outcome == 'failure'
run: |
echo 'Dependency Review could not run because GitHub Dependency Graph / Security Analysis is disabled for this repository.'
echo 'Enable it in Settings > Security > Advanced Security (or Security analysis) to enforce this check.'
3 changes: 3 additions & 0 deletions .gitignore
Original file line number Diff line number Diff line change
Expand Up @@ -6,6 +6,9 @@

# Testing
/coverage
/test-results/
/.lighthouseci/
/playwright-report/

# Next.js
/.next/
Expand Down
27 changes: 27 additions & 0 deletions lighthouserc.json
Original file line number Diff line number Diff line change
@@ -0,0 +1,27 @@
{
"ci": {
"collect": {
"startServerCommand": "npm run dev -- --hostname 127.0.0.1 --port 3000",
"startServerReadyPattern": "Ready",
"startServerReadyTimeout": 120000,
"url": [
"http://127.0.0.1:3000/"
],
"numberOfRuns": 1,
"settings": {
"preset": "desktop"
}
},
"assert": {
"assertions": {
"categories:performance": ["warn", { "minScore": 0.5 }],
"categories:accessibility": ["warn", { "minScore": 0.7 }],
"categories:best-practices": ["warn", { "minScore": 0.7 }],
"categories:seo": ["off"]
}
},
"upload": {
"target": "temporary-public-storage"
}
}
}
Loading
Loading