From d6b2d99f1ea8169009ff23866e00ba0ce8273e4e Mon Sep 17 00:00:00 2001 From: Sojin Antony Date: Mon, 15 Dec 2025 18:52:55 +0530 Subject: [PATCH 1/9] version update --- package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/package.json b/package.json index ff59948..1068764 100644 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "react-spread-sheet-excel", - "version": "3.2.4", + "version": "3.2.5", "description": "Lightning-fast React spreadsheet component with Excel-like features. Render 100,000+ cells with formulas, formatting, copy/paste, undo/redo. Perfect for data grids and Excel-like apps.", "keywords": [ "react-spread-sheet-excel", From 65cbd8a45a4f10cf0c51bd672b6ffd2418ffa2f2 Mon Sep 17 00:00:00 2001 From: Sojin Antony Date: Mon, 15 Dec 2025 19:07:54 +0530 Subject: [PATCH 2/9] version update, fix npm publish --- .github/workflows/npm-publish.yml | 15 +++++++-------- 1 file changed, 7 insertions(+), 8 deletions(-) diff --git a/.github/workflows/npm-publish.yml b/.github/workflows/npm-publish.yml index 5570157..8c93d65 100644 --- a/.github/workflows/npm-publish.yml +++ b/.github/workflows/npm-publish.yml @@ -20,16 +20,15 @@ jobs: - uses: actions/setup-node@v4 with: node-version: 22 - registry-url: https://registry.npmjs.org/ + registry-url: 'https://registry.npmjs.org' - run: npm install - run: npm run build - - name: Publish to npm (dry-run on PR) - run: | - if [ "${{ github.event_name }}" == "pull_request" ]; then - npm publish --provenance --access public --dry-run - else - npm publish --provenance --access public - fi + - name: Publish to npm + if: github.event_name == 'release' + run: npm publish --provenance --access public + - name: Dry-run publish (PR only) + if: github.event_name == 'pull_request' + run: npm publish --provenance --access public --dry-run publish-gpr: if: github.event_name == 'release' From d2adcfcd3691096922e1eeda91b83bb995487278 Mon Sep 17 00:00:00 2001 From: Sojin Antony Date: Mon, 15 Dec 2025 19:13:13 +0530 Subject: [PATCH 3/9] i should revert this --- .github/workflows/npm-publish.yml | 2 +- package.json | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/npm-publish.yml b/.github/workflows/npm-publish.yml index 8c93d65..ae9b012 100644 --- a/.github/workflows/npm-publish.yml +++ b/.github/workflows/npm-publish.yml @@ -28,7 +28,7 @@ jobs: run: npm publish --provenance --access public - name: Dry-run publish (PR only) if: github.event_name == 'pull_request' - run: npm publish --provenance --access public --dry-run + run: npm publish --provenance --access public publish-gpr: if: github.event_name == 'release' diff --git a/package.json b/package.json index 1068764..ff59948 100644 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "react-spread-sheet-excel", - "version": "3.2.5", + "version": "3.2.4", "description": "Lightning-fast React spreadsheet component with Excel-like features. Render 100,000+ cells with formulas, formatting, copy/paste, undo/redo. Perfect for data grids and Excel-like apps.", "keywords": [ "react-spread-sheet-excel", From a9c3cd5cb14b3cda9b1f10defe9f70a3ca3b9b9b Mon Sep 17 00:00:00 2001 From: Sojin Antony Date: Mon, 15 Dec 2025 19:23:42 +0530 Subject: [PATCH 4/9] version update --- .github/workflows/npm-publish.yml | 63 ++++++++++++++++++++++--------- 1 file changed, 46 insertions(+), 17 deletions(-) diff --git a/.github/workflows/npm-publish.yml b/.github/workflows/npm-publish.yml index ae9b012..92ce33e 100644 --- a/.github/workflows/npm-publish.yml +++ b/.github/workflows/npm-publish.yml @@ -1,7 +1,8 @@ -# This workflow publishes the package to npm using Trusted Publishers (OIDC) -# For more information see: https://docs.npmjs.com/generating-provenance-statements +# This workflow publishes packages to npm and GitHub Packages +# NPM publishing uses Granular Access Tokens (new standard as of Dec 2024) +# For more info: https://docs.npmjs.com/creating-and-viewing-access-tokens -name: Node.js Package +name: Publish Package on: pull_request: @@ -11,41 +12,69 @@ on: jobs: publish-npm: + name: Publish to NPM runs-on: ubuntu-latest permissions: contents: read - id-token: write + id-token: write # Required for provenance steps: - - uses: actions/checkout@v4 - - uses: actions/setup-node@v4 + - name: Checkout code + uses: actions/checkout@v4 + + - name: Setup Node.js + uses: actions/setup-node@v4 with: node-version: 22 registry-url: 'https://registry.npmjs.org' - - run: npm install - - run: npm run build - - name: Publish to npm + + - name: Install dependencies + run: npm install + + - name: Build package + run: npm run build + + - name: Publish to npm (Release) if: github.event_name == 'release' run: npm publish --provenance --access public - - name: Dry-run publish (PR only) + env: + NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} + + - name: Test publish (PR - Dry Run) if: github.event_name == 'pull_request' - run: npm publish --provenance --access public + run: npm publish --provenance --access public --dry-run + env: + NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} publish-gpr: + name: Publish to GitHub Packages if: github.event_name == 'release' runs-on: ubuntu-latest permissions: contents: read packages: write steps: - - uses: actions/checkout@v2 - - uses: actions/setup-node@v2 + - name: Checkout code + uses: actions/checkout@v2 + + - name: Setup Node.js + uses: actions/setup-node@v2 with: node-version: 22 registry-url: https://npm.pkg.github.com/ scope: "@sojinantony01" - - run: node gpr-hack.js - - run: npm install - - run: npm run build - - run: npm publish + + - name: Prepare package for GPR + run: node gpr-hack.js + + - name: Install dependencies + run: npm install + + - name: Build package + run: npm run build + + - name: Publish to GitHub Packages + run: npm publish env: NODE_AUTH_TOKEN: ${{secrets.ACTIONS_DEPLOY_ACCESS_TOKEN_SHEET}} + +# Made with Bob From 4db54bdcdcc2bbed01d740bee6b2d71965870d1f Mon Sep 17 00:00:00 2001 From: Sojin Antony Date: Mon, 15 Dec 2025 19:25:17 +0530 Subject: [PATCH 5/9] i should revert this --- .github/workflows/npm-publish.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/npm-publish.yml b/.github/workflows/npm-publish.yml index 92ce33e..fd7c97a 100644 --- a/.github/workflows/npm-publish.yml +++ b/.github/workflows/npm-publish.yml @@ -41,7 +41,7 @@ jobs: - name: Test publish (PR - Dry Run) if: github.event_name == 'pull_request' - run: npm publish --provenance --access public --dry-run + run: npm publish --provenance --access public env: NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} From a31c6d12ba6e858d213791fdc9ac380dd0704641 Mon Sep 17 00:00:00 2001 From: Sojin Antony Date: Mon, 15 Dec 2025 19:38:08 +0530 Subject: [PATCH 6/9] version update --- .github/workflows/npm-publish.yml | 12 ++++-------- 1 file changed, 4 insertions(+), 8 deletions(-) diff --git a/.github/workflows/npm-publish.yml b/.github/workflows/npm-publish.yml index fd7c97a..31e5586 100644 --- a/.github/workflows/npm-publish.yml +++ b/.github/workflows/npm-publish.yml @@ -1,6 +1,6 @@ -# This workflow publishes packages to npm and GitHub Packages -# NPM publishing uses Granular Access Tokens (new standard as of Dec 2024) -# For more info: https://docs.npmjs.com/creating-and-viewing-access-tokens +# This workflow publishes packages using NPM Trusted Publishing (OIDC) +# No tokens needed - authentication happens automatically via GitHub OIDC +# For more info: https://docs.npmjs.com/generating-provenance-statements name: Publish Package @@ -16,7 +16,7 @@ jobs: runs-on: ubuntu-latest permissions: contents: read - id-token: write # Required for provenance + id-token: write # Required for OIDC authentication steps: - name: Checkout code uses: actions/checkout@v4 @@ -36,14 +36,10 @@ jobs: - name: Publish to npm (Release) if: github.event_name == 'release' run: npm publish --provenance --access public - env: - NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} - name: Test publish (PR - Dry Run) if: github.event_name == 'pull_request' run: npm publish --provenance --access public - env: - NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} publish-gpr: name: Publish to GitHub Packages From 714dd808eafbc364f86042d3c0fb6b184b0025fb Mon Sep 17 00:00:00 2001 From: Sojin Antony Date: Mon, 15 Dec 2025 19:41:21 +0530 Subject: [PATCH 7/9] version update --- .github/workflows/npm-publish.yml | 31 ++++++++++++------------------- 1 file changed, 12 insertions(+), 19 deletions(-) diff --git a/.github/workflows/npm-publish.yml b/.github/workflows/npm-publish.yml index 31e5586..787afd6 100644 --- a/.github/workflows/npm-publish.yml +++ b/.github/workflows/npm-publish.yml @@ -1,49 +1,42 @@ # This workflow publishes packages using NPM Trusted Publishing (OIDC) -# No tokens needed - authentication happens automatically via GitHub OIDC -# For more info: https://docs.npmjs.com/generating-provenance-statements +# Documentation: https://docs.npmjs.com/trusted-publishers name: Publish Package on: - pull_request: - branches: [main, master] release: types: [created] + workflow_dispatch: # Allow manual trigger for testing + +permissions: + contents: read + id-token: write # Required for OIDC jobs: publish-npm: name: Publish to NPM runs-on: ubuntu-latest - permissions: - contents: read - id-token: write # Required for OIDC authentication steps: - - name: Checkout code + - name: Checkout uses: actions/checkout@v4 - - name: Setup Node.js + - name: Setup Node uses: actions/setup-node@v4 with: - node-version: 22 + node-version: '20.x' registry-url: 'https://registry.npmjs.org' - name: Install dependencies - run: npm install + run: npm ci || npm install - - name: Build package + - name: Build run: npm run build - - name: Publish to npm (Release) - if: github.event_name == 'release' - run: npm publish --provenance --access public - - - name: Test publish (PR - Dry Run) - if: github.event_name == 'pull_request' + - name: Publish run: npm publish --provenance --access public publish-gpr: name: Publish to GitHub Packages - if: github.event_name == 'release' runs-on: ubuntu-latest permissions: contents: read From 1853ae7c7539fb7116eab0caddd2ad87c011c3fa Mon Sep 17 00:00:00 2001 From: Sojin Antony Date: Mon, 15 Dec 2025 19:47:42 +0530 Subject: [PATCH 8/9] version update --- .github/workflows/npm-publish.yml | 9 ++++++++- 1 file changed, 8 insertions(+), 1 deletion(-) diff --git a/.github/workflows/npm-publish.yml b/.github/workflows/npm-publish.yml index 787afd6..ced4b18 100644 --- a/.github/workflows/npm-publish.yml +++ b/.github/workflows/npm-publish.yml @@ -4,6 +4,8 @@ name: Publish Package on: + pull_request: + branches: [main, master] release: types: [created] workflow_dispatch: # Allow manual trigger for testing @@ -33,7 +35,12 @@ jobs: run: npm run build - name: Publish - run: npm publish --provenance --access public + run: | + if [ "${{ github.event_name }}" == "pull_request" ]; then + npm publish + else + npm publish + fi publish-gpr: name: Publish to GitHub Packages From 44fc27cabf3e19bc4c83a9d6a8a6fd3d5aed614d Mon Sep 17 00:00:00 2001 From: Sojin Antony Date: Mon, 15 Dec 2025 19:48:39 +0530 Subject: [PATCH 9/9] version update --- .github/workflows/npm-publish.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/npm-publish.yml b/.github/workflows/npm-publish.yml index ced4b18..1729276 100644 --- a/.github/workflows/npm-publish.yml +++ b/.github/workflows/npm-publish.yml @@ -29,7 +29,7 @@ jobs: registry-url: 'https://registry.npmjs.org' - name: Install dependencies - run: npm ci || npm install + run: npm install - name: Build run: npm run build