This yarn audit action executes the yarn audit command with the option to ignore certain advisories. To ignore advisories add a .yarn-audit-known-issues file in the repository root:
yarn audit --json | grep auditAdvisory > .yarn-audit-known-issuesAn exit code of 0 is considered a successful execution.
steps:
- uses: jrmcdonald/yarn-audit-action@main