name: Code Analysis (JS/Vue)

on:
  pull_request:
  push:
    branches: [ main ]

jobs:
  analyze:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v4

      - name: Node versions
        run: |
          node -v
          npm -v

      - name: Install dependencies
        run: npm ci

      - name: Lint
        run: npm run lint

      - name: Unit tests
        run: npm test

      - name: Build
        run: npm run build --if-present

      - name: Semgrep (SAST)
        run: semgrep --config p/default --error .