chore: bump immer from 10.2.0 to 11.0.0 (#3786) #1434

Workflow file for this run

	name: ci

	on:
	push:
	branches:
	- main

	concurrency: ${{ github.workflow }}-${{ github.ref }}

	# Security: Apply principle of least privilege
	# This workflow handles package publishing and documentation generation
	# - release-pkg: Needs write access to create releases and publish packages
	# - documentation: Uses dispatched workflow with minimal required permissions
	permissions:
	contents: write # Required for creating releases and publishing packages
	packages: write # Required for publishing to npm
	id-token: write # Required for OIDC token generation

	jobs:
	release-pkg:
	name: Version or publish packages
	runs-on: ubuntu-latest
	# Job-specific permissions for package publishing
	permissions:
	contents: write # Required for creating releases and pushing changes
	packages: write # Required for publishing to npm registry
	id-token: write # Required for OIDC token generation
	pull-requests: write # Required for changesets action to create PRs
	outputs:
	published: ${{ steps.changesets.outputs.published }}
	hasChangesets: ${{ steps.changesets.outputs.hasChangesets }}
	steps:
	# Checkout repository with full history for changeset processing
	- uses: actions/checkout@v6
	with:
	fetch-depth: 0

	# Configure git user for commits made by the workflow
	- name: Configure git user (trigger actor)
	uses: ./.github/actions/config-git-user

	# Install dependencies and setup Node.js environment
	- name: Setup node and install deps
	uses: ./.github/actions/node-setup

	# Process changesets: create version PR or publish packages to npm
	# This step requires write permissions to create releases and publish packages
	- name: Create Release Pull Request or Publish to npm
	id: changesets
	uses: changesets/action@v1
	with:
	title: '🤖 Bip Bop - Fusion Framework Release'
	createGithubReleases: true
	setupGitUser: false
	version: pnpm changeset:version
	publish: pnpm changeset:publish
	env:
	GITHUB_TOKEN: ${{ github.token }}
	NPM_TOKEN: ${{ secrets.NPM_AUTH_TOKEN }}

	# Convert changeset PR to draft to prevent accidental merging
	- name: convert Changeset PR to draft
	if: steps.changesets.outputs.published == 'false' && steps.changesets.outputs.pullRequestNumber
	run: gh pr ready ${{ steps.changesets.outputs.pullRequestNumber }} --undo
	env:
	GH_TOKEN: ${{ github.token }}

	# Update documentation only when packages are published
	# Uses dispatched workflow with minimal required permissions
	documentation:
	name: Update documentation
	permissions:
	contents: read # Required to read repository contents
	pages: write # Required to deploy to GitHub Pages
	id-token: write # Required for OIDC token generation
	needs: release-pkg
	if: needs.release-pkg.outputs.published == 'true'
	uses: ./.github/workflows/generate-docs.yml
	secrets: inherit

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore: bump immer from 10.2.0 to 11.0.0 (#3786) #1434

Workflow file

chore: bump immer from 10.2.0 to 11.0.0 (#3786) #1434

Uh oh!

Workflow file for this run