From 6bb434966d69baf3740bce555fdb889dbbbf9bb5 Mon Sep 17 00:00:00 2001
From: Tomas Vesely <448809+wham@users.noreply.github.com>
Date: Thu, 18 Dec 2025 11:28:39 -0800
Subject: [PATCH] Refactor NPM publish steps to remove OIDC authentication
 comments and streamline commands

---
 .github/workflows/release.yml | 11 +++--------
 1 file changed, 3 insertions(+), 8 deletions(-)

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index f46cb36..d91716a 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -18,6 +18,7 @@ on:
 
 permissions:
   contents: write
+  id-token: write
 
 jobs:
   check-pr-label:
@@ -341,9 +342,6 @@ jobs:
         with:
           node-version: "20"
           registry-url: "https://registry.npmjs.org"
-          # Enable OIDC trusted publishing authentication
-          # This eliminates the need for NPM_TOKEN secrets
-          # See: https://github.blog/changelog/2024-04-15-npm-provenance-now-supports-github-actions/
 
       - name: Download all artifacts
         uses: actions/download-artifact@v4
@@ -393,12 +391,9 @@ jobs:
         run: |
           for dir in npm/darwin-arm64 npm/darwin-x64 npm/linux-arm64 npm/linux-x64 npm/windows; do
             cd "$dir"
-            # Using --provenance with OIDC authentication (no token needed)
-            npm publish --provenance --access public
+            npm publish
             cd ../..
           done
 
       - name: Publish main package
-        run: |
-          # Using --provenance with OIDC authentication (no token needed)
-          npm publish --provenance --access public
+        run: npm publish