Skip to content

Commit 0ab706a

Browse files
committed
feat: publish via GitHub Actions with npm provenance
Add .github/workflows/publish.yml that runs `npm publish --provenance` on a version tag, and bump to 1.3.2. Required for n8n Cloud verification.
1 parent 0c4b10f commit 0ab706a

4 files changed

Lines changed: 61 additions & 2 deletions

File tree

.github/workflows/publish.yml

Lines changed: 53 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,53 @@
1+
name: Publish to npm
2+
3+
# Publishes the package to npm with an npm provenance statement.
4+
# Provenance (a Sigstore build attestation) is required for n8n Cloud
5+
# verification and can only be generated from a CI job with OIDC, so all
6+
# releases must go through this workflow rather than a local `npm publish`.
7+
#
8+
# Trigger: push a version tag, e.g.
9+
# git tag v1.3.2 && git push origin v1.3.2
10+
# The tag must match the `version` in package.json.
11+
12+
on:
13+
push:
14+
tags:
15+
- 'v*'
16+
workflow_dispatch:
17+
18+
permissions:
19+
contents: read
20+
id-token: write # required for npm provenance (Sigstore OIDC)
21+
22+
jobs:
23+
publish:
24+
runs-on: ubuntu-latest
25+
steps:
26+
- name: Checkout
27+
uses: actions/checkout@v4
28+
29+
- name: Setup Node.js
30+
uses: actions/setup-node@v4
31+
with:
32+
node-version: '22'
33+
registry-url: 'https://registry.npmjs.org'
34+
35+
- name: Verify tag matches package.json version
36+
if: github.event_name == 'push'
37+
run: |
38+
PKG_VERSION="v$(node -p "require('./package.json').version")"
39+
if [ "$PKG_VERSION" != "$GITHUB_REF_NAME" ]; then
40+
echo "::error::Tag $GITHUB_REF_NAME does not match package.json version $PKG_VERSION"
41+
exit 1
42+
fi
43+
44+
- name: Install dependencies
45+
run: npm install
46+
47+
- name: Build
48+
run: npm run build
49+
50+
- name: Publish to npm with provenance
51+
run: npm publish --provenance --access public
52+
env:
53+
NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}

CHANGELOG.md

Lines changed: 6 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -7,6 +7,12 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
77

88
## [Unreleased]
99

10+
## [1.3.2] - 2026-06-12
11+
12+
### Changed
13+
- Publish to npm via a GitHub Actions workflow with an npm provenance statement (Sigstore build attestation), so the package build source can be cryptographically verified. Required for n8n Cloud verification; no functional change to the node.
14+
- User-Agent header updated to `1.3.2`.
15+
1016
## [1.3.1] - 2026-06-11
1117

1218
### Fixed

nodes/Hedy/GenericFunctions.ts

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -34,7 +34,7 @@ export async function hedyApiRequest(
3434
url: `${baseUrl}${endpoint}`,
3535
headers: {
3636
'Content-Type': 'application/json',
37-
'User-Agent': 'n8n-nodes-hedy/1.3.1',
37+
'User-Agent': 'n8n-nodes-hedy/1.3.2',
3838
},
3939
qs,
4040
body,

package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
{
22
"name": "n8n-nodes-hedy",
3-
"version": "1.3.1",
3+
"version": "1.3.2",
44
"description": "n8n nodes for Hedy - AI-powered meeting intelligence integration",
55
"keywords": [
66
"n8n-community-node-package",

0 commit comments

Comments
 (0)