mirror of
https://github.com/tauri-apps/tauri.git
synced 2024-11-30 18:46:27 +03:00
chore: generate provenance statements for npm package (#10477)
* chore: generate provenance statements for npm package See also https://docs.npmjs.com/generating-provenance-statements#example-github-actions-workflow * also add --provenance for covector publishes --------- Co-authored-by: Lucas Nogueira <lucas@tauri.app>
This commit is contained in:
parent
a975cd7976
commit
008b9f7481
@ -113,8 +113,8 @@
|
|||||||
"pipe": true
|
"pipe": true
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
"command": "yarn publish --access public --loglevel silly --tag next",
|
"command": "yarn publish --access public --loglevel silly --tag next --provenance",
|
||||||
"dryRunCommand": "npm publish --dry-run --access public",
|
"dryRunCommand": "npm publish --dry-run --access public --provenance",
|
||||||
"pipe": true
|
"pipe": true
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
|
2
.github/workflows/publish-cli-js.yml
vendored
2
.github/workflows/publish-cli-js.yml
vendored
@ -390,7 +390,7 @@ jobs:
|
|||||||
- name: Publish
|
- name: Publish
|
||||||
run: |
|
run: |
|
||||||
echo "//registry.npmjs.org/:_authToken=$NPM_TOKEN" >> ~/.npmrc
|
echo "//registry.npmjs.org/:_authToken=$NPM_TOKEN" >> ~/.npmrc
|
||||||
npm publish --tag next
|
npm publish --tag next --provenance
|
||||||
env:
|
env:
|
||||||
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
||||||
NPM_TOKEN: ${{ secrets.ORG_NPM_TOKEN }}
|
NPM_TOKEN: ${{ secrets.ORG_NPM_TOKEN }}
|
||||||
|
Loading…
Reference in New Issue
Block a user