Bump the production-dependencies group across 1 directory with 9 updates #107

	# Melinda Node tests

	name: Melinda node tests

	on: push

	jobs:
	build-node-versions:
	name: Node version matrix

	strategy:
	matrix:
	node-version: [20.x, 22.x]
	os: [ubuntu-latest]
	# See supported Node.js release schedule at https://nodejs.org/en/about/releases/

	runs-on: ${{ matrix.os }}

	steps:
	- name: Checkout the code
	uses: actions/checkout@v4
	- name: Use Node.js ${{ matrix.node-version }}
	uses: actions/setup-node@v4
	with:
	node-version: ${{ matrix.node-version }}
	env:
	NPM_CONFIG_IGNORE_SCRIPTS: true
	- run: npm audit --package-lock-only --production --audit-level=moderate
	- run: npm i
	- run: npm test
	- run: npm run build --if-present

	njsscan:
	name: Njsscan-check
	runs-on: ubuntu-latest
	container: docker://node:20

	steps:
	- name: Checkout the code
	uses: actions/checkout@v4
	- name: nodejsscan scan
	id: njsscan
	uses: ajinabraham/njsscan-action@master
	with:
	args: '.'

	license-scan:
	name: License compliance check
	runs-on: ubuntu-latest

	steps:
	- uses: actions/checkout@v4
	- uses: mikaelvesavuori/license-compliance-action@v1
	with:
	exclude_pattern: /^@natlibfi/

	openshift-webhook:
	name: OpenShift webhook for image builder
	needs: [build-node-versions, njsscan]
	runs-on: ubuntu-latest

	steps:
	- name: Test webhook
	uses: joelwmale/webhook-action@master
	if: github.ref == 'refs/heads/test'
	with:
	url: ${{ secrets.WEBHOOK_URL_TEST }}
	body: '{}'
	- name: Prod webhook
	uses: joelwmale/webhook-action@master
	if: github.ref == 'refs/heads/main'
	with:
	url: ${{ secrets.WEBHOOK_URL_PROD }}
	body: '{}'

Provide feedback