From 32d0010af0b6f2fe97a901ea80ea3b34dbb5d166 Mon Sep 17 00:00:00 2001 From: Ayushman Chhabra <14110965+ayushmanchhabra@users.noreply.github.com> Date: Wed, 1 Jan 2025 22:31:03 +0530 Subject: [PATCH 1/3] fix(bld): await archiver.finalize --- src/bld.js | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/bld.js b/src/bld.js index 05ecaa36..864a93be 100644 --- a/src/bld.js +++ b/src/bld.js @@ -374,7 +374,7 @@ const compress = async ({ const writeStream = fs.createWriteStream(`${outDir}.zip`); archive.pipe(writeStream); archive.directory(outDir, false); - archive.finalize(); + await archive.finalize(); } else if (zip === 'tar') { await tar.create({ gzip: false, From 943b91f61798429e39ebd578f475982edab3ef59 Mon Sep 17 00:00:00 2001 From: Ayushman Chhabra <14110965+ayushmanchhabra@users.noreply.github.com> Date: Wed, 1 Jan 2025 22:32:36 +0530 Subject: [PATCH 2/3] chore(ci): upgrade Windows runner image from 2022 to 2025 --- .github/workflows/e2e.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/e2e.yml b/.github/workflows/e2e.yml index bb1c071c..7505d4bb 100644 --- a/.github/workflows/e2e.yml +++ b/.github/workflows/e2e.yml @@ -16,7 +16,7 @@ jobs: os: - macos-15 - ubuntu-24.04 - - windows-2022 + - windows-2025 fail-fast: false runs-on: ${{ matrix.os }} permissions: From 98281e95a0948938e6c473f3e1817f5371545f87 Mon Sep 17 00:00:00 2001 From: Ayushman Chhabra <14110965+ayushmanchhabra@users.noreply.github.com> Date: Wed, 1 Jan 2025 22:38:46 +0530 Subject: [PATCH 3/3] chore(docs): add SECURITY.md --- SECURITY.md | 5 +++++ 1 file changed, 5 insertions(+) create mode 100644 SECURITY.md diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 00000000..216aa5fa --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,5 @@ +# Reporting a Vulnerability + +If you discover a security vulnerability within `nw-builder`, please submit a report via the Github's Private Vulnerability Reporting feature. + +All security vulnerabilities will be promptly addressed.