As release-it is increasingly used from CI/CD environments such as Travis, Circle CI or GitHub Actions, this page outlines some popular ways to configure this. Do you have additional successful integrations, or experiencing issues with the existing ones below, feel free to open a ticket.
In order to push the release commit and tag back to the remote, the CI/CD environment should be authenticated with the original host (e.g. GitHub). Also see Git.
When using an SSH url (such as [email protected]:user/repo.git), add the public key to the CI/CD environment.
When using an HTTPS url (such as https://github.com/user/project.git), things are slightly more complicated. For
GitHub, add the GITHUB_TOKEN token to the CI/CD environment. Then make sure to add this token as a password in the
origin url before running release-it. An example is this .travis.yml section:
script:
- git remote rm origin
- git remote add origin https://[user]:${GITHUB_TOKEN}@github.com/[user]/[project].git
- git symbolic-ref HEAD refs/heads/masterReplace [user] and [project] with the actual values.
To publish a package to the (or any) npm registry from within a CI or CD environment such as Travis or Circle, make the
NPM_TOKEN available in the .npmrc file. This file should look like this before release-it attempts to publish the
package:
//registry.npmjs.org/:_authToken=$NPM_TOKEN
One way to achieve this is to set the NPM_TOKEN in the CI environment, and from a script do:
echo "//registry.npmjs.org/:_authToken=$NPM_TOKEN" > .npmrcSince release-it executes npm whoami as a prerequisite check, which does not seem to
respect the .npmrc file, the --npm.skipChecks argument can be used.
Here's an example fragment of what to add to .travis.yml:
deploy:
script:
- echo "//registry.npmjs.org/:_authToken=$NPM_TOKEN" > .npmrc
- npm run releaseIn short, here's the relevant fragment from .circleci/config.yml:
jobs:
deploy:
steps:
- attach_workspace:
at: ~/repo
- run:
name: Authenticate with registry
command: echo "//registry.npmjs.org/:_authToken=$NPM_TOKEN" > ~/repo/.npmrcSee Publishing npm Packages Using CircleCI for more details.
Make sure the GITHUB_TOKEN or GITLAB_TOKEN environment variable is set in the CI/CD environment to publish (or
draft) GitHub or
GitLab releases. This works the same as on your local
machine.
When using release-it with GitLab CI and SSH, make sure the following requirements are met:
gitandsshas packages are installed in the jobnpm installis run beforehand- Environment variables contain
GITLAB_TOKEN,SSH_PRIVATE_KEY,CI_EMAILandCI_USER - A user with permissions to write to protected branches or deploy key (env var) is added to the repo
The following example shows a pipeline that first installs Git and OpenSSH to Alpine, adds the SSH private key to the SSH agent, configures SSH, and eventually executes release-it:
before_script:
- apk add --no-cache git openssh
- eval `ssh-agent -s`
- echo "${SSH_PRIVATE_KEY}" | tr -d '\r' | ssh-add - > /dev/null # add ssh key
- mkdir -p ~/.ssh
- chmod 700 ~/.ssh
- '[[ -f /.dockerenv ]] && echo -e "Host *\n\tStrictHostKeyChecking no\n\n" > ~/.ssh/config'
- git checkout $CI_BUILD_REF_NAME
- git remote set-url origin "[email protected]:$CI_PROJECT_PATH.git"
- git config --global user.name "${CI_USERNAME}"
- git config --global user.email "${CI_EMAIL}"
- npm install
script:
- npx release-it --ciNote: the git remote set-url could also be set with the git.pushRepo option in the release-it configuration.
Some people have reported an issue when using GitLab CI (in #573):
ERROR fatal: tag vX.X.X already exists
Here is an example script sequence for GitLab to mitigate the issue:
- git pull origin $CI_BUILD_REF_NAME
- npm run releaseSpecifically, make sure to fetch with the --prune-tags argument before release-it tries to create the Git tag:
{
"hooks": {
"before:init": "git fetch --prune --prune-tags origin"
}
}