Skip to content

add github workflow for npm release #8

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 30 commits into from
Jul 1, 2025
Merged

add github workflow for npm release #8

merged 30 commits into from
Jul 1, 2025

Conversation

ieow
Copy link
Collaborator

@ieow ieow commented Jun 26, 2025

No description provided.

@socket-security Socket Security
Copy link

socket-security bot commented Jun 26, 2025
edited
Loading

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security		 Vulnerability Quality Maintenance License
Addednpm/​commitlint@​19.8.11001004288100
Addednpm/​@​types/​react@​19.1.81001007894100
Addednpm/​depcheck@​1.4.79810010079100
Addednpm/​@​commitlint/​config-conventional@​19.8.110010010087100
Addednpm/​@​metamask/​auto-changelog@​5.0.29910010088100
Addednpm/​eslint-config-prettier@​10.1.510010010090100
Addednpm/​@​evilmartians/​lefthook@​1.11.149210010098100
Addednpm/​@​lavamoat/​allow-scripts@​3.3.410010010093100
Addednpm/​@​eslint/​compat@​1.3.110010010093100
Addednpm/​prettier@​3.6.19910010096100
Addednpm/​eslint-plugin-prettier@​5.5.110010010097100

View full report

@socket-security Socket Security
Copy link

socket-security bot commented Jun 26, 2025
edited
Loading

All alerts resolved. Learn more about Socket for GitHub.

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

Ignoring alerts on:

  • npm/cosmiconfig@7.1.0
  • npm/resolve-dir@1.0.1
  • npm/expand-tilde@2.0.2
  • npm/global-prefix@1.0.2
  • npm/npm-normalize-package-bin@3.0.1
  • npm/abbrev@2.0.0
  • npm/@npmcli/node-gyp@3.0.0
  • npm/read-cmd-shim@4.0.0
  • npm/diff@5.2.0
  • npm/@npmcli/agent@2.2.2
  • npm/make-fetch-happen@13.0.1
  • npm/@npmcli/promise-spawn@7.0.2
  • npm/minipass-fetch@3.0.5
  • npm/validate-npm-package-name@5.0.1
  • npm/node-gyp@10.3.1
  • npm/foreground-child@3.3.1
  • npm/prettier@3.6.1

View full report

@ieow ieow changed the title add github workflow for rpm release add github workflow for npm release Jun 26, 2025
@ieow ieow force-pushed the feat/github-workflow branch from c156ce1 to 7f7e88a Compare June 26, 2025 15:14
@ieow ieow changed the base branch from main to feat/acm-error-code June 26, 2025 16:47
mcmire
mcmire reviewed Jun 26, 2025
View reviewed changes
Copy link

@mcmire mcmire left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This all looks pretty good, but I have a few comments that should help tighten things up a bit.

.github/workflows/publish-docs.yml
- name: Deploy to `${{ inputs.destination_dir }}` directory of `gh-pages` branch
uses: peaceiris/actions-gh-pages@de7ea6f8efb354206b205ef54722213d99067935
with:
# This `PUBLISH_DOCS_TOKEN` needs to be manually set per-repository.
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I have added the github-pages environment and set PUBLISH_DOCS_TOKEN in that environment.

@ieow ieow force-pushed the feat/github-workflow branch 3 times, most recently from ac9b2c8 to 87748e0 Compare June 27, 2025 06:02
@ieow ieow changed the base branch from feat/acm-error-code to main June 27, 2025 06:36
@github-advanced-security
Copy link

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

@ieow
Copy link
Collaborator Author

ieow commented Jun 30, 2025

@SocketSecurity ignore @npmcli/agent@2.2.2 @npmcli/promise-spawn@7.0.2 @npmcli/promise-spawn@7.0.2 foreground-child@3.3.1 make-fetch-happen@13.0.1 minipass-fetch@3.0.5 node-gyp@10.3.1 prettier@3.6.1 @npmcli/node-gyp@3.0.0 abbrev@2.0.0 cosmiconfig@7.1.0 diff@5.2.0 expand-tilde@2.0.2 global-prefix@1.0.2 npm-normalize-package-bin@3.0.1 read-cmd-shim@4.0.0 resolve-dir@1.0.1 validate-npm-package-name@5.0.1

@npmcli/agent@2.2.2

This package used by lavamoat

@npmcli/promise-spawn@7.0.2

This package used by lavamoat

@npmcli/promise-spawn@7.0.2

This package used by lavamoat

foreground-child@3.3.1

This package used by lavamoat

make-fetch-happen@13.0.1

This package used by lavamoat

minipass-fetch@3.0.5

This package used by lavamoat

node-gyp@10.3.1

This package used by lavamoat

prettier@3.6.1

This package use for code formatting

@npmcli/node-gyp@3.0.0

This package used by lavamoat

abbrev@2.0.0

This package used by lavamoat

cosmiconfig@7.1.0

This package used by depcheck

diff@5.2.0

This package used by @metamask/auto-changelog

expand-tilde@2.0.2

This package used by depcheck

global-prefix@1.0.2

This package used by depcheck

npm-normalize-package-bin@3.0.1

This package used by lavamoat

read-cmd-shim@4.0.0

This package used by lavamoat

resolve-dir@1.0.1

This package used by depcheck

validate-npm-package-name@5.0.1

This package used by lavamoat

mcmire
mcmire reviewed Jun 30, 2025
View reviewed changes
mcmire
mcmire approved these changes Jun 30, 2025
View reviewed changes
Copy link

@mcmire mcmire left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Changes to workflows look good to me. Thanks for your patience :)

@chaitanyapotti chaitanyapotti merged commit afc7d22 into main Jul 1, 2025
23 checks passed
@chaitanyapotti chaitanyapotti deleted the feat/github-workflow branch July 1, 2025 05:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mcmire mcmire mcmire approved these changes

@chaitanyapotti chaitanyapotti chaitanyapotti approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@ieow @mcmire @chaitanyapotti