Db contrib/waltz 6635 primary measurable ratings #50

	name: CVE Scanning for Node.js

	on:
	pull_request:
	paths:
	- 'waltz-ng/package.json'
	- 'waltz-ng/package-lock.json'
	- 'waltz-ng/allow-list.json'
	- '.github/workflows/node.yml'

	jobs:
	scan:
	runs-on: ubuntu-latest
	strategy:
	matrix:
	node-version: [16.x]
	steps:
	- uses: actions/checkout@v3
	- name: Use Node.js ${{ matrix.node-version }}
	uses: actions/setup-node@v3
	with:
	node-version: ${{ matrix.node-version }}
	- run: npm ci --prod
	working-directory: waltz-ng
	- run: npx --yes auditjs ossi --whitelist allow-list.json
	working-directory: waltz-ng

Provide feedback