Skip to content

Commit

Permalink
ci(corepack): pinned the expected dev version of npm and explicitly u…
Browse files Browse the repository at this point in the history
…sed it for audit signatures (#796)
  • Loading branch information
travi authored Mar 18, 2024
1 parent 97e368d commit f628e14
Show file tree
Hide file tree
Showing 3 changed files with 6 additions and 4 deletions.
3 changes: 2 additions & 1 deletion .github/workflows/release.yml
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,8 @@ jobs:
with:
cache: npm
node-version: lts/*
- run: npm ci
- run: npm clean-install
- run: corepack npm audit signatures
- run: npx semantic-release
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
Expand Down
4 changes: 2 additions & 2 deletions .github/workflows/test.yml
Original file line number Diff line number Diff line change
Expand Up @@ -33,7 +33,7 @@ jobs:
node-version: "${{ matrix.node-version }}"
cache: npm
- run: npm clean-install
- run: npm audit signatures
- run: corepack npm audit signatures
- run: npm test

# verify against the node version defined for development in the .nvmrc
Expand All @@ -51,7 +51,7 @@ jobs:
node-version-file: .nvmrc
cache: npm
- run: npm clean-install
- run: npm audit signatures
- run: corepack npm audit signatures
- run: npm test

# separate job to set as required in branch protection,
Expand Down
3 changes: 2 additions & 1 deletion package.json
Original file line number Diff line number Diff line change
Expand Up @@ -126,5 +126,6 @@
"extends": [
"github>semantic-release/.github:renovate-config"
]
}
},
"packageManager": "npm@10.5.0+sha256.17ca6e08e7633b624e8f870db81a78f46afe119de62bcaf0a7407574139198fc"
}

0 comments on commit f628e14

Please sign in to comment.