Release #10

	name: Release
	on:
	workflow_run:
	workflows:
	- Continuous Integration
	branches:
	- main
	types:
	- completed

	permissions:
	contents: read # for checkout

	jobs:
	release:
	name: Release
	runs-on: ubuntu-latest
	permissions:
	contents: write # to be able to publish a GitHub release
	issues: write # to be able to comment on released issues
	pull-requests: write # to be able to comment on released pull requests
	id-token: write # to enable use of OIDC for trusted publishing and npm provenance
	packages: write # to be able to publish to GitHub Packages for Docker images

	steps:
	- name: Checkout
	uses: actions/checkout@v4
	with:
	fetch-depth: 0

	- name: Setup Node.js
	uses: actions/setup-node@v4
	with:
	node-version: '22.x'
	cache: 'yarn'

	- name: Install dependencies
	run: yarn --frozen-lockfile

	- name: Audit dependencies
	run: yarn npm audit --severity critical \|\| exit 1

	- name: Release
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	GIT_AUTHOR_NAME: 'Release Bot'
	GIT_AUTHOR_EMAIL: 'release-bot@astrolabe-expeditions.org'
	GIT_COMMITTER_NAME: 'Release Bot'
	GIT_COMMITTER_EMAIL: 'release-bot@astrolabe-expeditions.org'
	DOCKER_REGISTRY_USER: ${{ github.actor }}
	DOCKER_REGISTRY_PASSWORD: ${{ secrets.GITHUB_TOKEN }}
	SUPABASE_URL: ${{ secrets.SUPABASE_URL }}
	SUPABASE_KEY: ${{ secrets.SUPABASE_KEY }}
	run: npx --package semantic-release@25 --package @codedependant/semantic-release-docker semantic-release

Provide feedback