From ba07267372773548f7141454c30b06f7166b45ff Mon Sep 17 00:00:00 2001
From: Rainer Killinger <killinger@hrz.uni-frankfurt.de>
Date: Tue, 23 Aug 2022 10:12:40 +0200
Subject: [PATCH] ci: enforce npm audit for production dependencies

---
 .gitlab-ci.yml | 12 +-----------
 1 file changed, 1 insertion(+), 11 deletions(-)

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index e6acaefd..20e304c6 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -50,10 +50,7 @@ audit:
   dependencies:
     - build
   script:
-    - npm audit
-  allow_failure: true
-  except:
-    - schedules
+    - npm audit --production
 
 pages:
   stage: deploy
@@ -66,13 +63,6 @@ pages:
     paths:
       - public
 
-scheduled-audit:
-  stage: audit
-  script:
-    - npm audit --audit-level=high
-  only:
-    - schedules
-
 ci:
   stage: test
   dependencies: