maven-settings-action/.github/workflows/audit.yml

name: Audit
on:
  pull_request:
  push:
    branches-ignore:
      - 'dependabot/**'
  schedule:
    - cron: '09 22 * * *'

jobs:
  audit:
    name: Audit
    strategy:
      matrix:
        os: [ubuntu-latest, windows-latest, macOS-latest]
      fail-fast: false
    runs-on: ${{ matrix.os }}

    steps:
    - uses: actions/checkout@v2.3.2

    - uses: actions/setup-node@v2.1.1
      with:
        node-version: '12.x'

    - run: npm version
    - run: npm ci
    - run: npm audit