Merge pull request #110 from oslllo/security #52
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: CD/Release | |
| on: | |
| push: | |
| branches: | |
| - master | |
| permissions: | |
| contents: write | |
| pull-requests: write | |
| jobs: | |
| release-please: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: google-github-actions/release-please-action@v3 | |
| id: release | |
| with: | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| release-type: node | |
| package-name: oslllo-svg-fixer | |
| release-as: 5.0.0 | |
| # The logic below handles the npm publication: | |
| - uses: actions/checkout@v2 | |
| # these if statements ensure that a publication only occurs when | |
| # a new release is created: | |
| if: ${{ steps.release.outputs.release_created }} | |
| - uses: actions/setup-node@v1 | |
| with: | |
| node-version: 12 | |
| registry-url: 'https://registry.npmjs.org' | |
| if: ${{ steps.release.outputs.release_created }} | |
| # if you are using Yarn, substitute the command below with `yarn install --frozen-lockfile` | |
| - run: npm ci | |
| if: ${{ steps.release.outputs.release_created }} | |
| - run: npm publish | |
| env: | |
| NODE_AUTH_TOKEN: ${{secrets.NPM_AUTH_TOKEN}} | |
| if: ${{ steps.release.outputs.release_created }} |