authgear · tung2744 · Apr 9, 2025 · Apr 8, 2025 · Apr 8, 2025 · Apr 8, 2025
diff --git a/.github/workflows/ci.yaml b/.github/workflows/ci.yaml
@@ -27,6 +27,7 @@ jobs:
     - uses: ruby/setup-ruby@v1
       with:
         bundler-cache: true
+    - run: make ruby-audit
     - run: sudo xcode-select -s /Applications/Xcode_16.2.app/Contents/Developer
     - run: npm ci
     - run: npm ci
@@ -111,7 +112,7 @@ jobs:
     - run: make capacitor-build-unsigned-aab
 
   react_native_ios:
-    if: ${{ github.repository == 'authgear/authgear-sdk-js' }}
+    if: ${{ github.repository == 'authgear/authgear-sdk-js' && github.event_name == 'push' }}
     needs: test
     # When we change the runner image, the ruby version will change too.
     # We need to update .tool-versions to make them the same.
@@ -145,7 +146,7 @@ jobs:
       run: make react-native-upload-ios-app
 
   react_native_android:
-    if: ${{ github.repository == 'authgear/authgear-sdk-js' }}
+    if: ${{ github.repository == 'authgear/authgear-sdk-js' && github.event_name == 'push' }}
     needs: test
     # When we change the runner image, the available Android build tools versions will also change.
     # We need to update build.gradle too.
@@ -181,7 +182,7 @@ jobs:
         make react-native-upload-aab
 
   capacitor_ios:
-    if: ${{ github.repository == 'authgear/authgear-sdk-js' }}
+    if: ${{ github.repository == 'authgear/authgear-sdk-js' && github.event_name == 'push' }}
     needs: test
     runs-on: macos-14
     steps:
@@ -213,7 +214,7 @@ jobs:
       run: make capacitor-upload-ios-app
 
   capacitor_android:
-    if: ${{ github.repository == 'authgear/authgear-sdk-js' }}
+    if: ${{ github.repository == 'authgear/authgear-sdk-js' && github.event_name == 'push' }}
     needs: test
     runs-on: macos-14
     steps:

diff --git a/Gemfile b/Gemfile
@@ -5,5 +5,6 @@ source "https://rubygems.org"
 # https://github.com/actions/runner-images/issues/11345
 ruby "~> 3.3"
 
+gem "bundler-audit", "~> 0.9.2"
 gem "cocoapods", "~> 1.16"
 gem "fastlane", "~> 2.227"
diff --git a/Gemfile.lock b/Gemfile.lock
@@ -45,6 +45,9 @@ GEM
     base64 (0.2.0)
     benchmark (0.4.0)
     bigdecimal (3.1.9)
+    bundler-audit (0.9.2)
+      bundler (>= 1.2.0, < 3)
+      thor (~> 1.0)
     claide (1.1.0)
     cocoapods (1.16.2)
       addressable (~> 2.8)
@@ -231,7 +234,7 @@ GEM
     i18n (1.14.7)
       concurrent-ruby (~> 1.0)
     jmespath (1.6.2)
-    json (2.10.1)
+    json (2.10.2)
     jwt (2.10.1)
       base64
     logger (1.6.6)
@@ -276,6 +279,7 @@ GEM
     terminal-notifier (2.0.0)
     terminal-table (3.0.2)
       unicode-display_width (>= 1.1.1, < 3)
+    thor (1.3.2)
     trailblazer-option (0.1.2)
     tty-cursor (0.7.1)
     tty-screen (0.8.2)
@@ -314,6 +318,7 @@ PLATFORMS
   x86_64-linux-musl
 
 DEPENDENCIES
+  bundler-audit (~> 0.9.2)
   cocoapods (~> 1.16)
   fastlane (~> 2.227)
 

diff --git a/Makefile b/Makefile
@@ -66,6 +66,10 @@ build-image:
 push-image:
 	docker push $(IMAGE)
 
+.PHONY: ruby-audit
+ruby-audit:
+	bundle exec bundler-audit check --update
+
 .PHONY: clean
 clean:
 	rm -rf ./build

diff --git a/example/capacitor/package-lock.json b/example/capacitor/package-lock.json
diff --git a/example/reactnative/yarn.lock b/example/reactnative/yarn.lock
diff --git a/package-lock.json b/package-lock.json
diff --git a/website/package-lock.json b/website/package-lock.json