From 9275d1c128d514004e9381abf60255482b66d728 Mon Sep 17 00:00:00 2001
From: Tasos Bekos <tbekos@gmail.com>
Date: Fri, 12 Feb 2021 14:45:17 +0200
Subject: [PATCH] feat(repo): add npm audit report on ci

It will fail only if critical vulnerabilities are found.
---
 .github/workflows/npm-audit.yml | 15 +++++++++++++++
 1 file changed, 15 insertions(+)
 create mode 100644 .github/workflows/npm-audit.yml

diff --git a/.github/workflows/npm-audit.yml b/.github/workflows/npm-audit.yml
new file mode 100644
index 0000000000..f286d33893
--- /dev/null
+++ b/.github/workflows/npm-audit.yml
@@ -0,0 +1,15 @@
+name: NPM Audit
+
+on:
+  schedule:
+  - cron: "0 0 * * *"
+
+jobs:
+  audit:
+    runs-on: ubuntu-latest
+
+    steps:
+    - uses: actions/checkout@v2
+
+    - name: Run a security audit
+      run: npx audit-ci --critical --report-type summary