simon/semantic-release
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

ci(release): enabled provenance for publishing to npm

Browse Source
This commit is contained in:
Matt Travi 2023-03-21 22:12:37 -05:00
parent 050412eab8
commit 91eae117ed
No known key found for this signature in database
GPG Key ID: 8C173646C24FED70
2 changed files with 7 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
.github/workflows/release.yml vendored
View File

@ -7,13 +7,14 @@ name: Release
- beta - beta
- "*.x" - "*.x"
permissions: permissions:
contents: read # for checkout contents: read # for checkout
jobs: jobs:
release: release:
permissions: permissions:
contents: write # to be able to publish a GitHub release contents: write # to be able to publish a GitHub release
issues: write # to be able to comment on released issues issues: write # to be able to comment on released issues
pull-requests: write # to be able to comment on released pull requests pull-requests: write # to be able to comment on released pull requests
id-token: write # to enable use of OIDC for npm provenance
name: release name: release
runs-on: ubuntu-latest runs-on: ubuntu-latest
steps: steps:

3
package.json
View File

@ -117,7 +117,8 @@
"trailingComma": "es5" "trailingComma": "es5"
}, },
"publishConfig": { "publishConfig": {
"access": "public" "access": "public",
"provenance": true
}, },
"repository": { "repository": {
"type": "git", "type": "git",