Skip to content

Commit a6fa2c7

Browse files
mfranzkemfranzke
authored
feat: generating provenance statements (#968)
1 parent e125299 commit a6fa2c7

File tree

2 files changed

+4
-1
lines changed

2 files changed

+4
-1
lines changed

.github/scripts/publish-npm.sh

+2-1
Original file line numberDiff line numberDiff line change
@@ -41,5 +41,6 @@ do
4141
echo "Could not authenticate with $REGISTRY"
4242
exit 1
4343
fi
44-
npm publish --tag "$TAG" db-ui-core-"$VALID_SEMVER_VERSION".tgz
44+
# https://docs.npmjs.com/generating-provenance-statements#example-github-actions-workflow
45+
npm publish --tag "$TAG" db-ui-core-"$VALID_SEMVER_VERSION".tgz --provenance
4546
done

.github/workflows/03-publish-packages.yml

+2
Original file line numberDiff line numberDiff line change
@@ -20,6 +20,8 @@ jobs:
2020
publish:
2121
name: Publish latest package versions to GitHub Packages
2222
runs-on: ubuntu-latest
23+
permissions:
24+
id-token: write
2325
steps:
2426
- name: ⬇ Checkout repo
2527
uses: actions/checkout@v4

0 commit comments

Comments
 (0)