fix: drop npm lockfile cache since package-lock.json is gitignored

William-Hill · William-Hill · commit 9247784aa918 · 2026-02-23T15:24:38.000-05:00
npm ci requires a lockfile; switch to npm install in ci-dashboard and
security-audit workflows to avoid cache resolution failures.
diff --git a/.github/workflows/ci-dashboard.yml b/.github/workflows/ci-dashboard.yml
@@ -27,11 +27,9 @@ jobs:
       - uses: actions/setup-node@v4
         with:
           node-version: "20"
-          cache: "npm"
-          cache-dependency-path: codebenders-dashboard/package-lock.json
 
       - name: Install dependencies
-        run: npm ci
+        run: npm install
 
       - name: TypeScript type check
         run: npx tsc --noEmit
diff --git a/.github/workflows/security-audit.yml b/.github/workflows/security-audit.yml
@@ -22,11 +22,9 @@ jobs:
       - uses: actions/setup-node@v4
         with:
           node-version: "20"
-          cache: "npm"
-          cache-dependency-path: codebenders-dashboard/package-lock.json
 
       - name: Install dependencies
-        run: npm ci
+        run: npm install
 
       - name: Audit
         run: npm audit --audit-level=high
