[codex] Refresh GitHub beginners QA dependencies#221
Merged
Conversation
Collaborator
Author
|
@copilot review このPRでは、QA/deploy devDependencies更新、 |
There was a problem hiding this comment.
Pull request overview
This PR refreshes the repository’s Node-based QA/tooling dependencies and updates the Docs Quality Gate workflow to include dependency auditing, while also adjusting markdown tables in docs/manuscript to comply with newer markdownlint behavior and documenting the Node.js minimum required by transitive QA dependencies.
Changes:
- Bump QA/dev dependencies (
markdownlint-cli,markdown-link-check,gh-pages) and updatepackage-lock.jsonaccordingly. - Enhance
.github/workflows/docs-quality-gate.ymlwithpackage-lock.jsontriggers, npm cache, and annpm auditstep. - Update README and ignore rules, plus normalize table delimiter rows in docs/manuscript appendices for markdownlint.
Reviewed changes
Copilot reviewed 3 out of 9 changed files in this pull request and generated no comments.
Show a summary per file
| File | Description |
|---|---|
| README.md | Documents Node.js 20.18.1+ requirement and adds npm audit to the suggested verification commands. |
| package.json | Updates QA/dev dependency versions. |
| package-lock.json | Lockfile refresh reflecting dependency bumps and audit fixes. |
| manuscript/appendix-resources/index.md | Normalizes markdown table delimiter rows for lint compatibility. |
| manuscript/appendix-github-shortcuts/index.md | Normalizes markdown table delimiter rows for lint compatibility. |
| docs/appendices/appendix-resources/index.md | Normalizes markdown table delimiter rows for lint compatibility. |
| docs/appendices/appendix-github-shortcuts/index.md | Normalizes markdown table delimiter rows for lint compatibility. |
| .gitignore | Ignores additional Jekyll/Bundler/GitHub Pages local artifacts. |
| .github/workflows/docs-quality-gate.yml | Adds package-lock.json path triggers, enables npm cache, and runs npm audit. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
Collaborator
Author
|
マージ前確認を完了しました。 ローカル検証:
CI / Review:
備考:
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
markdownlint-cli,markdown-link-check, andgh-pages) and audit-fixpackage-lock.json.package-lock.jsonin its path trigger, and enable npm cache for root installs.MD060indocs/and matchingmanuscript/appendices.20.18.1+/npm auditin README and ignore additional local Jekyll/Bundler/GitHub Pages artifacts.Verification
npm cinpm testnpm run docs:quality-gatenpm auditBUNDLE_PATH/BUNDLE_APP_CONFIGbundle exec jekyll build --config docs/_config.yml --source docs --destination _site.github/workflows/*.{yml,yaml}git diff --checkNotes
npm auditimproved from 10 vulnerabilities (4 moderate, 5 high, 1 critical) to 0.minimatheme dependency, but the build succeeds and this PR does not change that theme stack.