From 051efddc3258309bc58df57120103f72a3d9a750 Mon Sep 17 00:00:00 2001
From: Marian Steinbach <marian@giantswarm.io>
Date: Wed, 13 May 2026 08:20:58 +0200
Subject: [PATCH] feat(ci): add workflow to audit dependencies

---
 .github/workflows/js-dependency-audit.yaml | 23 ++++++++++++++++++++++
 1 file changed, 23 insertions(+)
 create mode 100644 .github/workflows/js-dependency-audit.yaml

diff --git a/.github/workflows/js-dependency-audit.yaml b/.github/workflows/js-dependency-audit.yaml
new file mode 100644
index 0000000..180a301
--- /dev/null
+++ b/.github/workflows/js-dependency-audit.yaml
@@ -0,0 +1,23 @@
+name: JS Dependency Audit
+
+on:
+  pull_request:
+    types: [opened, synchronize, reopened]
+    paths:
+      - '**/package.json'
+      - '**/package-lock.json'
+      - '**/npm-shrinkwrap.json'
+      - '**/yarn.lock'
+      - '**/.yarnrc'
+      - '**/.yarnrc.yml'
+      - '**/pnpm-lock.yaml'
+      - '**/pnpm-workspace.yaml'
+
+permissions: {}
+
+jobs:
+  audit:
+    uses: giantswarm/github-workflows/.github/workflows/js-dependency-audit.yaml@main
+    permissions:
+      contents: read
+      pull-requests: write