From 17808eec9809ac97ed9a8a3d52585c44b7d65e54 Mon Sep 17 00:00:00 2001
From: Raj Kumar Panda <rajkumar@stepsecurity.io>
Date: Sat, 15 Mar 2025 23:34:21 +0530
Subject: [PATCH] audit package workflow added

---
 .github/workflows/audit_package.yml | 34 +++++++++++++++++++++++++++++
 1 file changed, 34 insertions(+)
 create mode 100644 .github/workflows/audit_package.yml

diff --git a/.github/workflows/audit_package.yml b/.github/workflows/audit_package.yml
new file mode 100644
index 0000000..853d6fe
--- /dev/null
+++ b/.github/workflows/audit_package.yml
@@ -0,0 +1,34 @@
+name: Yarn Audit Fix Run
+
+on:
+  workflow_dispatch:
+    inputs:
+      base_branch:
+        description: "Specify a base branch"
+        required: false
+        default: "main"
+      package_manager:
+        description: "Specify package manager (npm or yarn)"
+        required: false
+        default: "yarn"
+      script:
+        description: "Specify a script to run after audit fix"
+        required: false
+        default: "yarn build"
+  
+  schedule:
+    - cron: "0 0 * * 1"
+
+jobs:
+  audit-fix:
+    uses: step-security/reusable-workflows/.github/workflows/audit_fix.yml@v1
+    with:
+      base_branch: ${{ inputs.base_branch || 'main' }}
+      package_manager: "yarn"
+      script: ${{ inputs.script || 'yarn build' }}
+
+permissions:
+  contents: write
+  pull-requests: write
+  packages: read
+  issues: write
\ No newline at end of file