cleanup/ci: update publish workflow

Signed-off-by: Dharun Krishna K B <[email protected]>

Author: kbdharun

.github/workflows/publish.yml

@@ -1,95 +1,111 @@
-# This workflow automatically publishes the package to NPM and GHCR when a new release is created.
-# Before, creating a new release, make sure to update the package version in package.json.
+# This workflow automatically publishes the package to NPM and GHCR when a new tag is created/pushed.
+# Before, tagging a new release, make sure to update the version in package.json file.
 # The NPM package is published using Trusted Publishers using OIDC (without a PAT) when a release is created
 # and the deployment is approved by an admin.
 
-name: Publish
+
+name: Publish Release
 on:
-  release:
-    types: [published]
-  workflow_dispatch:
+  push:
+    tags:
+      - 'v*'
+
 
 jobs:
+  create-release:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write # Required to create a release
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Create GitHub Release with changelog
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        run: |
+          TAG_NAME=${GITHUB_REF#refs/tags/}
+          gh release create "$TAG_NAME" --generate-notes --title "$TAG_NAME" --verify-tag || echo "Release may already exist."
+
   publish-npm:
     runs-on: ubuntu-latest
-    name: npm
+    needs: create-release
 
     environment: 
       name: npm
       url: https://www.npmjs.com/package/tldr-lint
-  
+
     permissions:
       contents: read
       id-token: write # Required for OIDC in NPM Trusted Publishing
 
     steps:
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
-      # Setup .npmrc file to publish to npm
       - uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4.4.0
         with:
           node-version: '22.x'
           registry-url: 'https://registry.npmjs.org'
 
       - run: npm ci
-      - run: npm publish --access public
+      - run: npm publish
 
   publish-ghcr:
     runs-on: ubuntu-latest
-
+    needs: create-release
     permissions:
       contents: read
       packages: write # Allow pushing images to GHCR
-      attestations: write # To create and write attestations
+      attestations: write # Required to create and write attestations
       id-token: write # Additional permissions for the persistence of the attestations
-    
+
     env:
       BUILDX_NO_DEFAULT_ATTESTATIONS: 1
 
     steps:
-    - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
-
-    - name: Set image name
-      run: |
-        echo "IMAGE_URL=ghcr.io/tldr-pages/tldr-lint">> "$GITHUB_ENV"
-
-    - name: Docker meta
-      id: docker_meta
-      uses: docker/metadata-action@c1e51972afc2121e065aed6d45c65596fe445f3f # v5.8.0
-      with:
-        images: |
-          ${{ env. IMAGE_URL }}
-        tags: |
-          type=raw,value=latest
-
-    - name: Set up Docker Buildx
-      uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3.11.1
-
-    - name: Login to GitHub Package Registry
-      uses: docker/login-action@184bdaa0721073962dff0199f1fb9940f07167d1 # v3.5.0
-      with:
-        registry: ghcr.io
-        username: ${{ github.repository_owner }}
-        password: ${{ secrets.GITHUB_TOKEN }}
-
-    - name: Build and Push the Docker image
-      id: push
-      uses: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83 # v6.18.0
-      with:
-        context: .
-        file: Dockerfile
-        push: true
-        tags: ${{ steps.docker_meta.outputs.tags }}
-        labels: ${{ steps.docker_meta.outputs.labels }}
-        cache-from: type=gha
-        cache-to: type=gha,mode=max
-        platforms: linux/amd64
-        provenance: false
-
-    - name: Attest pushed image
-      uses: actions/attest-build-provenance@e8998f949152b193b063cb0ec769d69d929409be # v2.4.0
-      id: attest
-      with:
-        subject-name: ${{ env.IMAGE_URL }}
-        subject-digest: ${{ steps.push.outputs.digest }}
-        push-to-registry: false
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+
+      - name: Set image name
+        run: |
+          echo "IMAGE_URL=ghcr.io/tldr-pages/tldr-lint">> "$GITHUB_ENV"
+
+      - name: Docker meta
+        id: docker_meta
+        uses: docker/metadata-action@c1e51972afc2121e065aed6d45c65596fe445f3f # v5.8.0
+        with:
+          images: |
+            ${{ env.IMAGE_URL }}
+          tags: |
+            type=raw,value=latest
+            type=raw,value=${{ github.ref_name }}
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3.11.1
+
+      - name: Login to GitHub Package Registry
+        uses: docker/login-action@184bdaa0721073962dff0199f1fb9940f07167d1 # v3.5.0
+        with:
+          registry: ghcr.io
+          username: ${{ github.repository_owner }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Build and Push the Docker image
+        id: push
+        uses: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83 # v6.18.0
+        with:
+          context: .
+          file: Dockerfile
+          push: true
+          tags: ${{ steps.docker_meta.outputs.tags }}
+          labels: ${{ steps.docker_meta.outputs.labels }}
+          cache-from: type=gha
+          cache-to: type=gha,mode=max
+          platforms: linux/amd64
+          provenance: false
+
+      - name: Attest pushed image
+        uses: actions/attest-build-provenance@e8998f949152b193b063cb0ec769d69d929409be # v2.4.0
+        id: attest
+        with:
+          subject-name: ${{ env.IMAGE_URL }}
+          subject-digest: ${{ steps.push.outputs.digest }}
+          push-to-registry: false

package.json

@@ -24,8 +24,10 @@
     "pages",
     "lint",
     "validate",
-    "format"
+    "format",
+    "linter"
   ],
+  "homepage": "https://tldr.sh",
   "author": {
     "name": "Ruben Vereecken",
     "email": "[email protected]"