[Snyk] Security upgrade web3.storage from 4.2.0 to 4.5.5 #3265
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Yarn Lock Changes | |
| on: [pull_request] | |
| jobs: | |
| yarn_lock_changes: | |
| runs-on: ubuntu-latest | |
| # Permission overwrite is required for Dependabot PRs, see "Common issues" below | |
| permissions: | |
| pull-requests: write | |
| steps: | |
| - name: Checkout | |
| uses: actions/checkout@v3 | |
| # Please use `main` as version before the stable release will be published as `v1` | |
| - name: Yarn Lock Changes | |
| uses: Simek/yarn-lock-changes@main | |
| with: | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| # Optional inputs, can be deleted safely if you are happy with default values | |
| collapsibleThreshold: 25 | |
| failOnDowngrade: false | |
| path: yarn.lock | |
| updateComment: true |