Run security ESLint sarif from package.json (#5)

jerone · web-flow · commit 29b78ceda90f · 2022-08-19T23:14:01.000+02:00
diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
@@ -22,12 +22,10 @@ jobs:
       security-events: write
     steps:
       - uses: actions/checkout@v3
-      - name: Install ESLint and SARIF formatter
-        run: npm install eslint @microsoft/eslint-formatter-sarif@2.1.7
+      - name: Install dependencies
+        run: npm ci --no-fund
       - name: Run ESLint
-        run: npx eslint .
-          --format @microsoft/eslint-formatter-sarif
-          --output-file eslint-results.sarif
+        run: npm run security:eslint
         continue-on-error: true
       - name: Upload analysis results to GitHub
         uses: github/codeql-action/upload-sarif@v2
diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -30,6 +30,7 @@
     "lint": "lockfile-lint && eslint -f checklist .",
     "lint:fix": "prettier --write \"**/*\" & eslint -f checklist --fix .",
     "prepublishOnly": "npm run build",
+    "security:eslint": "eslint -f @microsoft/eslint-formatter-sarif -o eslint-results.sarif .",
     "test": "nyc cross-env TS_NODE_PROJECT=./tsconfig.test.json mocha",
     "typecheck": "tsc -p tsconfig.json --noEmit"
   },
@@ -39,6 +40,7 @@
     "@angular/compiler": "14.1.3",
     "@cspell/eslint-plugin": "^6.6.1",
     "@istanbuljs/nyc-config-typescript": "^1.0.2",
+    "@microsoft/eslint-formatter-sarif": "^3.0.0",
     "@types/eslint": "8.4.5",
     "@types/mocha": "9.1.1",
     "@types/node": "18.7.6",
