ci: add ignore-scripts to Node package manager config (20260526-184008) (#748)

* ci: enforce ignore-scripts policy for Node package managers

---------

Co-authored-by: securityeng-bot[bot] <219863240+securityeng-bot[bot]@users.noreply.github.com>
This commit is contained in:
securityeng-bot[bot]
2026-06-05 09:05:39 -04:00
committed by GitHub
parent ff1266720e
commit 662dfc07d1
12 changed files with 22 additions and 0 deletions
@@ -14,6 +14,8 @@ COPY package-lock.json /usr/src/app
#RUN npm set progress=false \
# && npm config set depth 0 \
# && npm i install
COPY .npmrc .
COPY .yarnrc.yml .
RUN npm ci
# Get all the code needed to run the app