Skip to content

chore: migrate to OIDC for npm publishing #54

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
spawnia merged 1 commit into from
Nov 3, 2025
Merged

chore: migrate to OIDC for npm publishing #54

spawnia merged 1 commit into from
Nov 3, 2025

Conversation

@spawnia
Copy link
Member

@spawnia spawnia commented Nov 3, 2025

Migrated GitHub Actions release workflow to use OIDC authentication instead of NPM_TOKEN for trusted publishing.

Changes:

  • Added OIDC permissions (id-token: write, contents: write, issues: write, pull-requests: write) to release workflow
  • Removed NPM_TOKEN from environment variables
  • Updated GitHub Actions to latest versions (checkout@v5, setup-node@v6, git-auto-commit-action@v7)
  • Standardized Node.js version to 22 across all workflows
  • Updated semantic-release from v23.0.2 to v25.0.1
  • Updated yarn from 4.9.1 to 4.10.3
  • Added publishConfig with provenance: true to package.json

Related to PFE-55

🤖 Generated with Claude Code

@spawnia @claude
chore: migrate to OIDC for npm publishing
f73ab99 
Migrated GitHub Actions release workflow to use OIDC authentication instead of NPM_TOKEN for trusted publishing.

Changes:
- Added OIDC permissions (id-token: write, contents: write, issues: write, pull-requests: write) to release workflow
- Removed NPM_TOKEN from environment variables
- Updated GitHub Actions to latest versions (checkout@v5, setup-node@v6, git-auto-commit-action@v7)
- Standardized Node.js version to 22 across all workflows
- Updated semantic-release from v23.0.2 to v25.0.1
- Updated yarn from 4.9.1 to 4.10.3
- Added publishConfig with provenance: true to package.json

Related to PFE-55

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>
@spawnia spawnia requested a review from simbig November 3, 2025 15:41
@spawnia spawnia merged commit def3327 into master Nov 3, 2025
5 checks passed
@spawnia spawnia deleted the oidc-migration branch November 3, 2025 15:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@simbig simbig simbig approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@spawnia @simbig