diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml index 7d8d7c1d..f7d1888a 100644 --- a/.github/workflows/publish.yml +++ b/.github/workflows/publish.yml @@ -7,6 +7,8 @@ env: CI: true jobs: build: + permissions: + id-token: write runs-on: ubuntu-latest strategy: matrix: @@ -52,13 +54,13 @@ jobs: run: npm run build:npm --if-present - name: Publish NPMJS @fdmg if: contains(github.ref, 'canary') == false - run: npm publish ./dist + run: npm publish --provenance ./dist env: NODE_AUTH_TOKEN: ${{secrets.NODE_AUTH_TOKEN}} continue-on-error: true - name: Publish NPMJS @fdmg (canary) if: contains(github.ref, 'canary') - run: npm publish ./dist --tag next + run: npm publish --provenance ./dist --tag next env: NODE_AUTH_TOKEN: ${{secrets.NODE_AUTH_TOKEN}} continue-on-error: true @@ -66,13 +68,13 @@ jobs: run: cp ./dist/package.github.json ./dist/package.json - name: Publish NPMJS @fdmediagroep if: contains(github.ref, 'canary') == false - run: npm publish ./dist + run: npm publish --provenance ./dist env: NODE_AUTH_TOKEN: ${{secrets.NODE_AUTH_TOKEN}} continue-on-error: true - name: Publish NPMJS @fdmediagroep (canary) if: contains(github.ref, 'canary') - run: npm publish ./dist --tag next + run: npm publish --provenance ./dist --tag next env: NODE_AUTH_TOKEN: ${{secrets.NODE_AUTH_TOKEN}} continue-on-error: true @@ -86,13 +88,13 @@ jobs: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} - name: Publish GPR if: contains(github.ref, 'canary') == false - run: npm publish ./dist + run: npm publish --provenance ./dist env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} continue-on-error: true - name: Publish GPR (canary) if: contains(github.ref, 'canary') - run: npm publish ./dist --tag next + run: npm publish --provenance ./dist --tag next env: NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} continue-on-error: true