b40beebd26
Summary: Upgrades Danger to the latest available version to mitigate the jsonwebtoken security vulnerability. Changelog: [Internal] [Changed] - Upgrade Danger to 11.2.1 to mitigate jsonwebtoken security vulnerability Reviewed By: cortinico Differential Revision: D42505940 fbshipit-source-id: 740edc7316791e5afe894ecdd1e05e13d2ef1f2c |
||
|---|---|---|
| .. | ||
| .babelrc | ||
| README.md | ||
| code-analysis-bot.js | ||
| dangerfile.js | ||
| datastore.js | ||
| make-comment.js | ||
| package.json | ||
| post-artifacts-link.js | ||
| report-bundle-size.js | ||
README.md
Danger
Danger is a JavaScript runtime which helps you provide continuous feedback inside GitHub. It's used inside Github Actions to analyze the contents of a GitHub pull request.
If you want to test changes to Danger, I'd recommend checking out an existing PR and then running the danger pr command.
You'll need a GitHub Public Access Token (PAT). It will look like ghp_<REDACTED>.
So, for example:
DANGER_GITHUB_API_TOKEN=ghp_<REDACTED> yarn danger pr https://github.com/facebook/react-native/pull/1234
Code Analysis Bot
The code analysis bot provides lint and other results as inline reviews on GitHub. It runs as part of the Circle CI analysis workflow.
If you want to test changes to the Code Analysis Bot, I'd recommend checking out an existing PR and then running the analyze pr command.
You'll need a GitHub token. You can re-use this one: 312d354b5c36f082cfe9 07973d757026bdd9f196 (just remove the space).
So, for example:
GITHUB_TOKEN=[ENV_ABOVE] GITHUB_PR_NUMBER=1234 yarn lint-ci