refactor: remove GitHub Packages publishing

amannirala13 · amannirala13 · commit 049a4bc1d8ee · 2025-10-20T06:07:18.000+05:30
- Remove GitHub Packages publishing steps from workflow
- Simplify permissions (remove packages: write)
- Focus on npm as the primary and only registry
- GitHub Packages not needed for public open-source packages
- npm provides sufficient distribution with provenance
diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
@@ -21,7 +21,6 @@ jobs:
     environment: npm-publish
     permissions:
       contents: read
-      packages: write
       id-token: write
 
     steps:
@@ -62,28 +61,3 @@ jobs:
         env:
           NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
         continue-on-error: true
-
-      # Optional: Also publish to GitHub Packages
-      - name: Setup Node.js for GitHub Packages
-        if: github.event_name == 'release'
-        uses: actions/setup-node@v4
-        with:
-          node-version: '18'
-          registry-url: 'https://npm.pkg.github.com'
-          scope: '@envguard'
-
-      - name: Publish @envguard/cli to GitHub Packages
-        if: github.event_name == 'release'
-        working-directory: ./packages/cli
-        run: pnpm publish --no-git-checks --access public
-        env:
-          NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-        continue-on-error: true
-
-      - name: Publish @envguard/runner-node to GitHub Packages
-        if: github.event_name == 'release'
-        working-directory: ./packages/runner-node
-        run: pnpm publish --no-git-checks --access public
-        env:
-          NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-        continue-on-error: true
