[JIRA] (JENKINS-54175) Job and auto-PR running npm audit fix
Title: Message Title Baptiste Mathus assigned an issue to Unassigned Jenkins / JENKINS-54175 Job and auto-PR running npm audit fix Change By: Baptiste Mathus Assignee: R. Tyler Croy Add Comment This message was sent by Atlassian Jira (v7.11.2#711002-sha1:fdc329d) -- You received this message because you are subscribed to the Google Groups "Jenkins Issues" group. To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-issues+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
[JIRA] (JENKINS-54175) Job and auto-PR running npm audit fix
Title: Message Title Baptiste Mathus created an issue Jenkins / JENKINS-54175 Job and auto-PR running npm audit fix Issue Type: Task Assignee: R. Tyler Croy Components: evergreen Created: 2018-10-21 13:42 Labels: security evergreen Priority: Minor Reporter: Baptiste Mathus Problem statement We need to regularly check security vulnerabilities. NPM has this nice npm audit fix command that can be run for this purpose that we then want to run regularly. Expected We should have a job that runs npm audit fix once per day for example, and files automatically a PR against the evergreen repo if there's an update available. Add Comment