[JENKINS-54175] Job and auto-PR running npm audit fix

Type: Task
Resolution: Won't Do
Priority: Minor
Component/s: evergreen
Labels:
- evergreen
- security

Similar Issues:
Powered by SuggestiMate

Show
Sprint:
Evergreen - Milestone 2

Problem statement

We need to regularly check security vulnerabilities. NPM has this nice npm audit fix command that can be run for this purpose that we then want to run regularly.

Expected

We should have a job that runs npm audit fix once per day for example, and files automatically a PR against the evergreen repo if there's an update available.

links to

evergreen PR for the npm audit fix Makefile target (no auto PR created, though)

There are no comments yet on this issue.

Assignee:: Unassigned

Reporter:: Baptiste Mathus

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2018-10-21 13:42

Updated:: 2022-09-11 03:39

Resolved:: 2022-09-11 03:39

Jenkins

Details

Description

Problem statement

Expected

Attachments

Issue Links

Activity

People

Dates