Commit d1142c4

committed

ci: use trusted publisher for npm publish

No longer needs the `NPM_TOKEN` secret. But the "Publish" environment is kept for deployment protection.

1 parent 828744b commit d1142c4Copy full SHA for d1142c4

File tree

-2

lines changed

-2

lines changed

Lines changed: 3 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -19,6 +19,7 @@ jobs:`
`19`	`19`	`with:`
`20`	`20`	`node-version: 'lts/*'`
`21`	`21`	`registry-url: 'https://registry.npmjs.org'`
	`22`	`+ # Ensure npm 11.5.1 or later is installed`
	`23`	`+ - name: Update npm`
	`24`	`+ run: npm install -g npm@latest`
`22`	`25`	`- run: npm publish`
`23`		`- env:`
`24`		`- NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}`

Comments

(0)