From 6e3c87ba443131227e2ff6a8053d1697fad0f327 Mon Sep 17 00:00:00 2001
From: Vignesh Kennadi <vignesh.kennadi@xero.com>
Date: Mon, 30 Sep 2024 17:32:35 +0530
Subject: [PATCH] adds a step to check for vulnerabilities

---
 .github/workflows/build-lint-test.yml | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/build-lint-test.yml b/.github/workflows/build-lint-test.yml
index 6c96777d..277fea59 100644
--- a/.github/workflows/build-lint-test.yml
+++ b/.github/workflows/build-lint-test.yml
@@ -21,11 +21,13 @@ jobs:
                 cache: 'npm'
                 cache-dependency-path: '**/package-lock.json'
 
-
             - name: Install dependencies
               run: npm ci
               working-directory: xero-node
 
+            - name: Check for vulnerabilities
+              run: npm audit --exit-code
+
             - name: Run Build
               run: npm run build
               working-directory: xero-node