chore(deps-dev): bump js-yaml from 4.1.0 to 4.1.1 #67

	name: Dependency Check

	on:
	schedule:
	# Run at 9 AM UTC every Monday
	- cron: '0 9 * * 1'
	workflow_dispatch:
	push:
	paths:
	- 'package.json'
	- 'package-lock.json'

	jobs:
	security-audit:
	name: Security Audit
	runs-on: ubuntu-latest

	steps:
	- name: Checkout code
	uses: actions/checkout@v5

	- name: Setup Node.js
	uses: actions/setup-node@v4
	with:
	node-version: '20.x'
	cache: 'npm'

	- name: Install dependencies
	run: npm ci

	- name: Run npm audit
	id: audit
	run: \|
	echo "## Security Audit Report 🔒" >> $GITHUB_STEP_SUMMARY
	echo "" >> $GITHUB_STEP_SUMMARY

	if npm audit --audit-level=moderate 2>&1 \| tee audit-output.txt; then
	echo "✅ No vulnerabilities found" >> $GITHUB_STEP_SUMMARY
	else
	echo "⚠️ Vulnerabilities detected:" >> $GITHUB_STEP_SUMMARY
	echo '```' >> $GITHUB_STEP_SUMMARY
	cat audit-output.txt >> $GITHUB_STEP_SUMMARY
	echo '```' >> $GITHUB_STEP_SUMMARY
	fi

	- name: Check for outdated packages
	run: \|
	echo "" >> $GITHUB_STEP_SUMMARY
	echo "## Outdated Packages 📦" >> $GITHUB_STEP_SUMMARY
	echo "" >> $GITHUB_STEP_SUMMARY
	echo '```' >> $GITHUB_STEP_SUMMARY
	npm outdated \|\| true >> $GITHUB_STEP_SUMMARY
	echo '```' >> $GITHUB_STEP_SUMMARY

	dependency-review:
	name: Dependency Review
	runs-on: ubuntu-latest
	if: github.event_name == 'pull_request'

	steps:
	- name: Checkout code
	uses: actions/checkout@v5

	- name: Dependency Review
	uses: actions/dependency-review-action@v4
	with:
	fail-on-severity: moderate
	deny-licenses: GPL-3.0, AGPL-3.0

Provide feedback