allow ci to still function when npm audit finds vuln in prod deps (#525)

* allow ci to still function when npm audit finds vuln in prod deps

* fix formatting

Author: bryopsida

.devcontainer/devcontainer.json

@@ -0,0 +1,36 @@
+{
+  "name": "Syslog Portal Dev Container",
+  "image": "mcr.microsoft.com/vscode/devcontainers/javascript-node:22-bookworm",
+  "features": {
+    "ghcr.io/devcontainers/features/github-cli:1": {},
+    "ghcr.io/devcontainers/features/common-utils:2": {},
+    "ghcr.io/devcontainers-contrib/features/prettier:1": {},
+    "ghcr.io/devcontainers-contrib/features/ansible:2": {},
+    "ghcr.io/rocker-org/devcontainer-features/apt-packages:1": {
+      "packages": "net-tools,iputils-ping,build-essential"
+    }
+  },
+  "customizations": {
+    "vscode": {
+      "extensions": [
+        "github.vscode-pull-request-github",
+        "github.vscode-github-actions",
+        "johnpapa.vscode-peacock",
+        "ms-vscode.makefile-tools"
+      ],
+      "settings": {
+        "editor.tabSize": 2,
+        "terminal.integrated.defaultProfile.linux": "zsh",
+        "terminal.integrated.profiles.linux": {
+          "bash": {
+            "path": "bash",
+            "icon": "terminal-bash"
+          },
+          "zsh": {
+            "path": "zsh"
+          }
+        }
+      }
+    }
+  }
+}

.github/workflows/ci.yaml

@@ -17,6 +17,8 @@ jobs:
       security-events: write
     secrets:
       SONARQUBE_KEY: ${{ secrets.SONARQUBE_KEY }}
+    with:
+      continue-on-prod-vulns: true
   build-container:
     name: 'Build container image'
     uses: curium-rocks/flows/.github/workflows/oci-build-image.yml@main