ci: add ignore-scripts to Node package manager config (20260526-184008) (#748)

* ci: enforce ignore-scripts policy for Node package managers

---------

Co-authored-by: securityeng-bot[bot] <219863240+securityeng-bot[bot]@users.noreply.github.com>
This commit is contained in:
securityeng-bot[bot]
2026-06-05 09:05:39 -04:00
committed by GitHub
parent ff1266720e
commit 662dfc07d1
12 changed files with 22 additions and 0 deletions
+2
View File
@@ -11,6 +11,8 @@ COPY package.json /app/package.json
COPY package-lock.json /app/package-lock.json
# Same as npm install
COPY .npmrc .
COPY .yarnrc.yml .
RUN npm ci
COPY . /app