.github/workflows/lockfile.yml
name: Yarn
on: [pull_request]
jobs:
yarn_lock_changes:
name: Lock File Changes
runs-on: ubuntu-latest
# Permission overwrite is required for Dependabot PRs
permissions:
pull-requests: write
steps:
- name: Checkout
uses: actions/checkout@v4
- name: Digest Lock File
uses: Simek/yarn-lock-changes@23b5437388098454b9d9c1574b50066b3338dbf1
with:
token: ${{ secrets.GITHUB_TOKEN }}
collapsibleThreshold: 25
failOnDowngrade: false
path: yarn.lock
updateComment: true