-
Notifications
You must be signed in to change notification settings - Fork 0
129 lines (116 loc) · 3.53 KB
/
npm-publish.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
name: Release
on:
push:
branches:
- master
jobs:
release:
name: Release
runs-on: ubuntu-latest
permissions:
contents: write # to be able to publish a GitHub release
issues: write # to be able to comment on released issues
pull-requests: write # to be able to comment on released pull requests
id-token: write # to enable use of OIDC for npm provenance
steps:
- name: Checkout
uses: actions/checkout@v2
- name: Set up Node.js
uses: actions/setup-node@v2
with:
node-version: "lts/*"
- name: Install dependencies
run: npm clean-install
- name: Run semantic-release
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
run: npx semantic-release
- name: Publish
run: npm publish
env:
NODE_AUTH_TOKEN: ${{ secrets.JW_ACCESS }}
# name: Release
# on:
# push:
# branches:
# - master # or main
# permissions:
# contents: read # for checkout
# jobs:
# release:
# name: Release
# runs-on: ubuntu-latest
# permissions:
# contents: write # to be able to publish a GitHub release
# issues: write # to be able to comment on released issues
# pull-requests: write # to be able to comment on released pull requests
# id-token: write # to enable use of OIDC for npm provenance
# steps:
# - name: Checkout
# uses: actions/checkout@v3
# with:
# fetch-depth: 0
# - name: Setup Node.js
# uses: actions/setup-node@v3
# with:
# node-version: "lts/*"
# registry-url: "https://npm.pkg.github.com/"
# - name: Install dependencies
# run: npm clean-install
# - name: Verify the integrity of provenance attestations and registry signatures for installed dependencies
# run: npm audit signatures
# - name: Release
# env:
# GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
# GH_TOKEN: ${{ secrets.GH_TOKEN }}
# NPM_TOKEN: ${{ secrets.JW_ACCESS }}
# run: npx semantic-release
# name: Release Node.js Package
# on:
# push:
# branches:
# - master
# jobs:
# test:
# name: Run Tests
# runs-on: ubuntu-latest
# steps:
# - name: Checkout
# uses: actions/checkout@v2
# - name: Setup Node.js
# uses: actions/setup-node@v2
# with:
# node-version: 20.17.0
# - name: Install dependencies
# run: npm ci
# - name: Run tests
# run: npm test
# release:
# name: Release
# runs-on: ubuntu-latest
# permissions:
# contents: write # to be able to publish a GitHub release
# issues: write # to be able to comment on released issues
# pull-requests: write # to be able to comment on released pull requests
# id-token: write # to enable use of OIDC for npm provenance
# needs: test
# steps:
# - name: Checkout
# uses: actions/checkout@v2
# - name: Setup Node.js
# uses: actions/setup-node@v2
# with:
# node-version: 20.17.0
# registry-url: https://registry.npmjs.org/
# - name: Install dependencies
# run: npm ci
# - name: Install semantic-release extra plugins
# run: npm install --save-dev @semantic-release/changelog @semantic-release/git
# # - name: Build
# # run: npm run build
# - name: Release
# run: npx semantic-release
# ACTIONS_STEP_DEBUG: true
# env:
# GH_TOKEN: ${{ secrets.GH_TOKEN }}
# NODE_AUTH_TOKEN: ${{ secrets.GH_TOKEN }}