update repo task file (#30)

Author: evanharmon1

.github/workflows/security.yml

@@ -32,7 +32,7 @@ jobs:
     steps:
       - uses: actions/checkout@v4
       # Node.js dependencies scan
-      # Disabled since harmon-stack doesn not build a package.json file
+      # Disabled since harmon-stack does not build a package.json file
       # - name: Setup Node.js
       #   uses: actions/setup-node@v4
       #   with:

Taskfile.yml

@@ -13,25 +13,50 @@ tasks:
     silent: true
   validate:
     cmds:
-      - pre-commit run --all-files
-      # - shellcheck osConfig/mac/updateMac.sh
-      # - shellcheck osConfig/mac/setupMac.sh
-      # - shellcheck osConfig/mac/configureMacSettings.sh
+      - task: preCommit
+      - task: check
     silent: true
-  pre-commit:
+  preCommit:
     cmds:
       - pre-commit run --all-files
     silent: true
+  check:
+    cmds:
+      - npm run check:astro
+      - npm run check:eslint
+      - cmd: npm run check:prettier
+        # - shellcheck osConfig/mac/updateMac.sh
+        # - shellcheck osConfig/mac/setupMac.sh
+        # - shellcheck osConfig/mac/configureMacSettings.sh
+        ignore_error: true
+    silent: true
+  fix:
+    cmds:
+      - npm run fix
+    silent: true
   security:
+    cmds:
+      - task: secrets
+      - task: sast
+    ignore_error: true
+    silent: true
+  secrets:
     cmds:
       - ./check_for_pattern.sh . "*secret*"
       - whispers --config test/whisperConfig.yml --severity BLOCKER,CRITICAL .
-      - task: snyk
     silent: true
-  snyk:
+  sast:
+    cmds:
+      - task: sast-dependencies
+      - task: sast-code
+    silent: true
+  sast-dependencies:
+    cmds:
+      - snyk test --all-projects
+    silent: true
+  sast-code:
     cmds:
-      - snyk test --file=requirements.txt
-      - snyk test --file=package.json
+      - snyk code test
     silent: true
   ghReleaseInit:
     cmds: