|
7 | 7 |
|
8 | 8 | concurrency: ${{ github.workflow }}-${{ github.ref }} |
9 | 9 |
|
| 10 | +permissions: |
| 11 | + contents: write |
| 12 | + id-token: write # Needed for npm trusted publishing |
| 13 | + pull-requests: write |
| 14 | + |
10 | 15 | jobs: |
11 | 16 | release-stable: |
12 | 17 | runs-on: ubuntu-24.04 |
13 | 18 | name: Release Stable |
14 | | - permissions: |
15 | | - contents: write |
16 | | - id-token: write # Required for npm trusted publishing |
17 | | - pull-requests: write |
18 | 19 | outputs: |
19 | 20 | published: ${{ steps.changesets.outputs.published }} |
20 | 21 | steps: |
21 | 22 | - name: Checkout Repo |
22 | | - uses: actions/checkout@v4 |
| 23 | + uses: actions/checkout@v6 |
23 | 24 |
|
24 | 25 | - uses: pnpm/action-setup@v4 |
25 | | - |
26 | 26 | - name: Setup NodeJS |
27 | | - uses: actions/setup-node@v4 |
| 27 | + uses: actions/setup-node@v6 |
28 | 28 | with: |
29 | 29 | node-version: 22 |
30 | 30 | cache: "pnpm" |
31 | | - registry-url: "https://registry.npmjs.org" |
32 | 31 |
|
33 | | - # Ensure npm >= 11.5.1 for trusted publishing support. |
34 | | - # Automatically fetch future security updates |
35 | 32 | - name: Update npm |
36 | | - run: npm install -g npm@^11.5.1 |
| 33 | + run: npm install -g npm@^11 |
37 | 34 |
|
38 | 35 | - name: Install Dependencies |
39 | 36 | run: pnpm install --frozen-lockfile |
@@ -64,27 +61,19 @@ jobs: |
64 | 61 | name: Release Unstable |
65 | 62 | needs: release-stable |
66 | 63 | if: always() && github.event_name == 'push' && needs.release-stable.outputs.published == 'false' |
67 | | - permissions: |
68 | | - contents: write |
69 | | - id-token: write # Required for npm trusted publishing |
70 | | - pull-requests: write |
71 | 64 | steps: |
72 | 65 | - name: Checkout Repo |
73 | | - uses: actions/checkout@v4 |
| 66 | + uses: actions/checkout@v6 |
74 | 67 |
|
75 | 68 | - uses: pnpm/action-setup@v4 |
76 | | - |
77 | 69 | - name: Setup NodeJS |
78 | | - uses: actions/setup-node@v4 |
| 70 | + uses: actions/setup-node@v6 |
79 | 71 | with: |
80 | 72 | node-version: 20 |
81 | 73 | cache: "pnpm" |
82 | | - registry-url: "https://registry.npmjs.org" |
83 | 74 |
|
84 | | - # Ensure npm >= 11.5.1 for trusted publishing support. |
85 | | - # Automatically fetch future security updates |
86 | 75 | - name: Update npm |
87 | | - run: npm install -g npm@^11.5.1 |
| 76 | + run: npm install -g npm@^11 |
88 | 77 |
|
89 | 78 | - name: Install Dependencies |
90 | 79 | run: pnpm install --frozen-lockfile |
|
0 commit comments