standardised workflows and package updates

.github/workflows/build.yml

@@ -2,23 +2,19 @@
 name: Build
 
 on:
+  workflow_call:
   pull_request:
     branches:
       - main
-    # Review gh actions docs if you want to further define triggers, paths, etc
-    # https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#on
 
 jobs:
   build:
     name: Build
     runs-on: ubuntu-latest
-    # the enviroment to deploy to / use secrets from
-    environment: no-secret
-    # modify the default permissions of the GITHUB_TOKEN, so as to only allow least priveleges
     permissions:
       contents: read
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
 
       - name: Build
         uses: ConsenSys/docs-gha/build@main

.github/workflows/case.yml

@@ -13,13 +13,10 @@ jobs:
     strategy:
       matrix:
         folder: ["docs"]
-    # the enviroment to deploy to / use secrets from
-    environment: no-secret
-    # modify the default permissions of the GITHUB_TOKEN, so as to only allow least priveleges
     permissions:
       contents: read
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
 
       - name: Case check action
         uses: ConsenSys/docs-gha/case@main

.github/workflows/dependabot.yml

@@ -0,0 +1,11 @@
+name: 'Dependency Review'
+
+version: 2
+updates:
+  - package-ecosystem: "npm"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+      day: "sunday"
+    assignees:
+      - "protocol-galileo"      

.github/workflows/links.yml

@@ -0,0 +1,22 @@
+---
+name: Check for broken links
+
+on:
+  pull_request:
+    branches:
+      - main
+
+jobs:
+
+  linkCheck:
+    name: Link Checking
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        file-extensions: [".md", ".mdx"]
+    steps:
+      - uses: actions/checkout@v4
+      - name: LinkCheck
+        uses: ConsenSys/docs-gha/linkcheck@main
+        with:
+          FILE_EXTENSION: ${{ matrix.file-extensions }}

.github/workflows/lint.yml

@@ -1,5 +1,5 @@
 ---
-name: Check for lint/build errors
+name: Check for lint errors
 
 on:
   pull_request:
@@ -8,31 +8,19 @@ on:
 
 jobs:
   lint:
-    name: Lint Code Base, Spelling, Link Check
+    name: Lint 
     runs-on: ubuntu-latest
-    # the enviroment to deploy to / use secrets from
-    environment: no-secret
-    # modify the default permissions of the GITHUB_TOKEN, so as to only allow least priveleges
     permissions:
       contents: read
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@v4
 
-      - name: Lint
+      - name: Lint code
         uses: ConsenSys/docs-gha/lint@main
         with:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
-  linkCheck:
-    name: Link Checking
-    runs-on: ubuntu-latest
-    environment: no-secret
-    strategy:
-      matrix:
-        file-extensions: [".md", ".mdx"]
-    steps:
-      - uses: actions/checkout@v3
-      - name: LinkCheck
-        uses: ConsenSys/docs-gha/linkcheck@main
+      - name: Lint markdown
+        uses: ConsenSys/docs-gha/lint-markdown@main
         with:
-          FILE_EXTENSION: ${{ matrix.file-extensions }}
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

.github/workflows/spelling.yml

@@ -0,0 +1,23 @@
+---
+name: Check for spelling with vale
+
+on:
+  pull_request:
+    branches:
+      - main
+
+jobs:
+  vale:
+    name: Spelling
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Vale
+        uses: Consensys/docs-gha/spelling@main
+        with:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          FILEPATHS: "docs"
+

.github/workflows/trivy.yml

@@ -0,0 +1,18 @@
+---
+name: Trivy
+
+on:
+  pull_request:
+    branches:
+      - main
+
+jobs:
+  trivy:
+    name: Run trivy scanner
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - name: Trivy
+        uses: ConsenSys/docs-gha/trivy@main
+        with:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}

.nvmrc

@@ -1 +1 @@
-v19.4.0
+v20.14.0