ci: Verify yarn.lock stability via git diff

mydea · claude · mydea · commit 3c19b9426400 · 2026-05-22T09:42:30.000+02:00
Replace `yarn install --frozen-lockfile` with a regular install followed by
a `git diff --exit-code yarn.lock` check. `--frozen-lockfile` has repeatedly
failed to detect lockfile drift; comparing against the committed lockfile
catches any modification yarn actually makes.

Co-Authored-By: Claude Opus 4.7 (1M context) &lt;noreply@anthropic.com&gt;
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -353,8 +353,14 @@ jobs:
         uses: actions/setup-node@v6
         with:
           node-version-file: 'package.json'
+      - name: Install dependencies
+        run: yarn install --ignore-engines
       - name: Check that yarn.lock is stable
-        run: yarn install --frozen-lockfile --ignore-engines
+        run: |
+          if ! git diff --exit-code yarn.lock; then
+            echo "::error::yarn.lock has uncommitted changes after running 'yarn install'. Please run 'yarn install' locally and commit the updated yarn.lock."
+            exit 1
+          fi
       - name: Check for duplicate dependencies in lockfile
         run: yarn dedupe-deps:check
 
