Improve repository security posture (#153) #101

	# Original source: Docusaurus documentation

	name: Deploy to GitHub Pages

	on:
	push:
	branches:
	- main
	workflow_dispatch:

	concurrency:
	group:
	${{ github.workflow }}-${{ github.event.pull_request.number \|\| github.ref }}
	cancel-in-progress: true

	permissions: read-all

	jobs:
	build:
	name: Build Docusaurus
	runs-on: ubuntu-latest
	steps:
	- uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
	with:
	fetch-depth: 0

	- uses: actions/setup-node@60edb5dd545a775178f52524783378180af0d1f8 # v4.0.2
	with:
	node-version: 18
	cache: npm

	- name: Node modules cache
	id: modules-cache
	uses: actions/cache@13aacd865c20de90d75de3b17ebe84f7a17d57d2 #v4.0.0
	with:
	path: '**/node_modules'
	key: ${{ runner.os }}-modules-${{ hashFiles('**/package-lock.json') }}

	- name: Install dependencies
	if: ${{ steps.modules-cache.outputs.cache-hit != 'true' }}
	run: npm ci

	- name: Build website
	run: npm run build

	- name: Upload Build Artifact
	uses: actions/upload-pages-artifact@56afc609e74202658d3ffba0e8f6dda462b719fa # v3.0.1
	with:
	path: build

	deploy:
	name: Deploy to GitHub Pages
	needs: build

	# Grant GITHUB_TOKEN the permissions required to make a Pages deployment
	permissions:
	pages: write # to deploy to Pages
	id-token: write # to verify the deployment originates from an appropriate source

	# Deploy to the github-pages environment
	environment:
	name: github-pages
	url: ${{ steps.deployment.outputs.page_url }}

	runs-on: ubuntu-latest
	steps:
	- name: Deploy to GitHub Pages
	id: deployment
	uses: actions/deploy-pages@d6db90164ac5ed86f2b6aed7e0febac5b3c0c03e # v4.0.5

Provide feedback