Update publish.yml

.github/workflows/publish.yml

@@ -1,34 +1,48 @@
-# https://docusaurus.io/docs/deployment#deploying-to-github-pages
+# https://docusaurus.io/docs/deployment#triggering-deployment-with-github-actions
 name: publish
 
 on:
   push:
     branches: [main]
-
+  
 jobs:
-  publish:
+  build:
+    name: Build Docusaurus
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v1
+      - uses: actions/checkout@v4
-      - uses: actions/setup-node@v1
+        with:
+          fetch-depth: 0
+          
+      - uses: actions/setup-node@v5
         with:
           node-version: "20.x"
-      - uses: webfactory/ssh-agent@v0.5.0
+          cache: yarn
-        with:
+        
-          ssh-private-key: ${{ secrets.GH_PAGES_DEPLOY }}
       - name: Release to GitHub Pages
         working-directory: foomo
-        env:
-          USE_SSH: true
-          GIT_USER: git
         run: |
-          git config --global user.email "publisher@foomo.org"
+          yarn install --frozen-lockfile
-          git config --global user.name "gh-actions"
+          npm run build
-          if [ -e yarn.lock ]; then
+          
-            yarn install --frozen-lockfile
+      - uses: actions/upload-pages-artifact@v3
-          elif [ -e package-lock.json ]; then
+        with:
-            npm ci
+          path: foomo/build
-          else
+  
-            npm i
+  deploy:
-          fi
+    name: Deploy to GitHub Pages
-          npm run deploy
+    runs-on: ubuntu-latest
+    needs: build
+
+    permissions:
+      pages: write
+      id-token: write
+
+    environment:
+      name: github-pages
+      url: ${{ steps.deployment.outputs.page_url }}
+
+    steps:
+      - name: Deploy to GitHub Pages
+        id: deployment
+        uses: actions/deploy-pages@v4

.github/workflows/validate.yml

@@ -1,26 +1,26 @@
-# https://docusaurus.io/docs/deployment#deploying-to-github-pages
+# https://docusaurus.io/docs/deployment#triggering-deployment-with-github-actions
 name: validate
 
 on:
   pull_request:
     branches: [main]
+  workflow_dispatch:
 
 jobs:
   validate:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v1
+      - uses: actions/checkout@v5
-      - uses: actions/setup-node@v1
+        with:
+          fetch-depth: 0
+          
+      - uses: actions/setup-node@v5
         with:
           node-version: "20.x"
+          cache: yarn
+          
       - name: Test Build
         working-directory: foomo
         run: |
-          if [ -e yarn.lock ]; then
+          yarn install --frozen-lockfile
-            yarn install --frozen-lockfile
-          elif [ -e package-lock.json ]; then
-            npm ci
-          else
-            npm i
-          fi
           npm run build

foomo/docs/security/pentests.md

@@ -212,8 +212,8 @@ Repository documents referenced:
 
 Canonical references:
 
-- OWASP WSTG v4.2: <https://owasp.org/www-project-web-security-testing-guide/>
+- OWASP WSTG v4.2: [https://owasp.org/www-project-web-security-testing-guide/]
-- OWASP API Security Top‑10: <https://owasp.org/API-Security/>
+- OWASP API Security Top‑10: [https://owasp.org/API-Security/]
-- CVSS v3.1: <https://www.first.org/cvss/>
+- CVSS v3.1: [https://www.first.org/cvss/]