docs: add trusted publishing guide

JamesHenry · JamesHenry · commit 18297cc14a69 · 2025-09-22T18:45:41.000+04:00
diff --git a/website/docs/recipes/oidc-trusted-publishing.md b/website/docs/recipes/oidc-trusted-publishing.md
@@ -0,0 +1,13 @@
+# Using OIDC trusted publishing with Lerna
+
+In v9.0.0, Lerna added support for OIDC trusted publishing, which is a solution developed by npm to secure the publishing process and not use traditional tokens or other fixed credentials.
+
+The key idea is that your package(s) can be configured on the npm side to be required to be published from within a specific trusted environment such as GitHub Actions or GitLab CI.
+
+Within these supported environments, the OIDC token is retrieved and used to publish the package instead of a user or automation token.
+
+If you follow the official guidance from npm on how to configure your pipelines, then it will also just work for Lerna (v9 and later), no additional configuration is needed.
+
+https://docs.npmjs.com/trusted-publishers
+
+You can see a fully working example repo here: https://github.com/JamesHenry/lerna-v9-oidc-publishing-example
diff --git a/website/sidebars.js b/website/sidebars.js
@@ -61,7 +61,7 @@ const sidebars = {
     {
       type: "category",
       label: "Recipes",
-      items: ["recipes/using-pnpm-with-lerna"],
+      items: ["recipes/using-pnpm-with-lerna", "recipes/oidc-trusted-publishing"],
     },
     {
       type: "category",

Original file line number	Diff line number	Diff line change
`@@ -61,7 +61,7 @@ const sidebars = {`
`61`	`61`	`{`
`62`	`62`	`type: "category",`
`63`	`63`	`label: "Recipes",`
`64`		`- items: ["recipes/using-pnpm-with-lerna"],`
	`64`	`+ items: ["recipes/using-pnpm-with-lerna", "recipes/oidc-trusted-publishing"],`
`65`	`65`	`},`
`66`	`66`	`{`
`67`	`67`	`type: "category",`