update to repository information

.github/SECURITY.md

@@ -6,7 +6,7 @@ The following versions of the website have accepted security policies
 
 | Version | Supported          |
 | ------- | ------------------ |
-| 3.0.0   | :white_check_mark: |
+| >= 3.3.0 | :white_check_mark: |
 | 3.0.0   | :white_check_mark: |
 | < 2.1.0 | :x:                |
 

.github/workflows/security.yml

@@ -0,0 +1,79 @@
+name: Security Scanning
+
+on:
+  workflow_dispatch:
+  push:
+    branches: [ "main" ]
+  pull_request:
+    branches: [ "main" ]
+  schedule:
+    - cron: '0 0 * * *'
+
+permissions:
+  actions: read
+  contents: read
+  security-events: write
+
+jobs:
+  codeql:
+    name: CodeQL Analysis
+    runs-on: ubuntu-latest
+    strategy:
+      fail-fast: false
+      matrix:
+        language: [ 'javascript' ]
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v3
+      - name: Initialize CodeQL
+        uses: github/codeql-action/init@v2
+        with:
+          languages: ${{ matrix.language }}
+      - name: Autobuild
+        uses: github/codeql-action/autobuild@v2
+      - name: Perform CodeQL Analysis
+        uses: github/codeql-action/analyze@v2
+        with:
+          category: "/language:${{matrix.language}}"
+  eslint:
+    name: ESLint Analysis
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+      - name: Install ESLint
+        run: |
+          npm install eslint@latest
+          npm install @microsoft/[email protected]
+      - name: Run ESLint
+        run: npx eslint .
+          --format @microsoft/eslint-formatter-sarif
+          --output-file eslint-results.sarif
+        continue-on-error: true
+      - name: Upload analysis results to GitHub
+        uses: github/codeql-action/upload-sarif@v2
+        with:
+          sarif_file: eslint-results.sarif
+          wait-for-processing: true
+  snyk:
+    name: Snyk Security Analysis
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+      - name: Set up Snyk CLI to check for security issues
+        uses: snyk/actions/setup@806182742461562b67788a64410098c9d9b96adb
+      - name: Setup Node version 20
+        uses: actions/setup-node@v3
+        with:
+          node-version: 20
+        env:
+          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+      - name: Snyk Code test
+        run: snyk code test --sarif > snyk-code.sarif || true
+        env:
+          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }}
+      - name: Upload result to GitHub Code Scanning
+        uses: github/codeql-action/upload-sarif@v2
+        with:
+          sarif_file: snyk-code.sarif

.gitignore

@@ -1,42 +1,71 @@
-!views/**/logs
+# Dependency directories
+node_modules/
+jspm_packages/
+web_modules/
+bower_components/
+
+# Coverage Files and Directories
+lib-cov
+*.seed
 *.log
-npm-debug.log*
-yarn-debug.log*
-yarn-error.log*
-lerna-debug.log*
-.pnpm-debug.log*
-report.[0-9]*.[0-9]*.[0-9]*.[0-9]*.json
-pids
+*.csv
+*.dat
+*.out
 *.pid
-*.seed
-*.pid.lock
-lib-cov
+*.pid*
+*.gz
 coverage
-*.lcov
 .nyc_output
+
+# Grunt intermediate storage (http://gruntjs.com/creating-plugins#storing-task-files)
 .grunt
-bower_components
+
+# Auto-Generated Node/NPM Files
 .lock-wscript
+.npmrc
+npm-debug.log
+npm-debug.log.*
+yarn-debug.log
+yarn-debug.log.*
+yarn-error.log
+yarn-error.log.*
+.npm
+
+# Compiled binary addons (https://nodejs.org/api/addons.html)
 build/Release
-node_modules/
-jspm_packages/
-web_modules/
+
+# Debug and Logging Files
+*.d
+*.log
+logs
+lerna-debug.log*
+.pnpm-debug.log*
+report.[0-9]*.[0-9]*.[0-9]*.[0-9]*.json
+
+# Secrets
+.env
+.env*
+*.pem
+*.key
+*.pub
+
+# Output of 'npm pack'
+*.tgz
+
+# Yarn Integrity file
+.yarn-integrity
+
+# Misc
+!views/**/logs
+pids
 *.tsbuildinfo
-.npm
 .eslintcache
 .stylelintcache
 .rpt2_cache/
 .rts2_cache_cjs/
 .rts2_cache_es/
 .rts2_cache_umd/
 .node_repl_history
-*.tgz
-.yarn-integrity
-.env
-.env.development.local
-.env.test.local
-.env.production.local
-.env.local
 .cache
 .parcel-cache
 .next
@@ -47,7 +76,6 @@ dist
 .cache/
 .vuepress/dist
 .temp
-.cache
 .docusaurus
 .serverless/
 .fusebox/
@@ -59,6 +87,4 @@ dist
 .yarn/build-state.yml
 .yarn/install-state.gz
 .pnp.*
-.vscode/*
-package-lock.json
-logs
+.vscode/*