Skip to content

Commit 726416a

Browse files
academojackw
academo
authored and
jackw
committed
Move npm_token to vault and fix zizmur issues
1 parent a3dddd8 commit 726416a

File tree

1 file changed

+19
-3
lines changed

1 file changed

+19
-3
lines changed

packages/tsconfig-grafana/.github/workflows/publish-npm.yml

Lines changed: 19 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -8,22 +8,38 @@ jobs:
88
publish:
99
name: Publish to NPM & GitHub Package Registry
1010
runs-on: ubuntu-latest
11+
permissions:
12+
contents: read
13+
id-token: write
14+
packages: write
1115
steps:
16+
- id: get-secrets
17+
uses: grafana/shared-workflows/actions/get-vault-secrets@28361cdb22223e5f1e34358c86c20908e7248760 # get-vault-secrets-v1.1.0
18+
with:
19+
repo_secrets: |
20+
NPM_TOKEN=npm_token:npm_token
21+
1222
- name: Checkout repository
1323
uses: actions/checkout@v4
1424
with:
1525
ref: master
26+
persist-credentials: false
27+
1628
# limit releases to version changes - https://github.com/EndBug/version-check
1729
- name: Check version changes
18-
uses: EndBug/version-check@v2
30+
uses: EndBug/version-check@36ff30f37c7deabe56a30caa043d127be658c425 # 2.1.5
1931
id: version_check
2032
with:
2133
# diff the commits rather than commit message for version changes
2234
diff-search: true
2335

2436
- name: Version update detected
2537
if: steps.version_check.outputs.changed == 'true'
26-
run: 'echo "Version change found! New version: ${{ steps.version_check.outputs.version }} (${{ steps.version_check.outputs.type }})"'
38+
run: |
39+
echo "Version change found! New version: ${NEW_VERSION} (${TYPE})"
40+
env:
41+
NEW_VERSION: ${{ steps.version_check.outputs.version }}
42+
TYPE: ${{ steps.version_check.outputs.type }}
2743

2844
- name: Setup .npmrc file for NPM registry
2945
if: steps.version_check.outputs.changed == 'true'
@@ -36,7 +52,7 @@ jobs:
3652
if: steps.version_check.outputs.changed == 'true'
3753
run: npm publish --access public
3854
env:
39-
NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
55+
NODE_AUTH_TOKEN: ${{ env.NPM_TOKEN }}
4056

4157
- name: Setup .npmrc file for GitHub Packages
4258
if: steps.version_check.outputs.changed == 'true'

0 commit comments

Comments
 (0)