croct-tech · denis-rossati · Mar 30, 2026 · Apr 1, 2026 · Apr 6, 2026
diff --git a/.github/workflows/branch-validations.yaml b/.github/workflows/branch-validations.yaml
@@ -12,97 +12,8 @@ on:
       - opened
 
 jobs:
-  security-checks:
-   runs-on: ubuntu-latest
-   steps:
-     - uses: actions/checkout@v6
-     - uses: actions/setup-node@v6
-       with:
-         registry-url: 'https://registry.npmjs.org'
-         node-version: 23
-       env:
-         NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
-
-     - name: Cache dependencies
-       id: cache-dependencies
-       uses: actions/cache@v5
-       with:
-         path: node_modules
-         key: node_modules-${{ hashFiles('package-lock.json') }}
-
-     - name: Install dependencies
-       if: steps.cache-dependencies.outputs.cache-hit != 'true'
-       run: npm ci
-
-     - name: Check dependency vulnerabilities
-       run: npm audit --omit=dev
-
-  validate:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v6
-      - uses: actions/setup-node@v6
-        with:
-          node-version: 23
-
-      - name: Cache dependencies
-        id: cache-dependencies
-        uses: actions/cache@v5
-        with:
-          path: node_modules
-          key: node_modules-${{ hashFiles('package-lock.json') }}
-
-      - name: Install dependencies
-        if: steps.cache-dependencies.outputs.cache-hit != 'true'
-        run: npm ci
-
-      - name: Check compilation errors
-        run: npm run validate
-
-  lint:
-    runs-on: ubuntu-latest
-    needs:
-      - validate
-    steps:
-      - uses: actions/checkout@v6
-      - uses: actions/setup-node@v6
-        with:
-          node-version: 23
-
-      - name: Cache dependencies
-        id: cache-dependencies
-        uses: actions/cache@v5
-        with:
-          path: node_modules
-          key: node_modules-${{ hashFiles('package-lock.json') }}
-
-      - name: Install dependencies
-        if: steps.cache-dependencies.outputs.cache-hit != 'true'
-        run: npm ci
-
-      - name: Check coding standard violations
-        run: npm run lint
-
-  test:
-    runs-on: ubuntu-latest
-    needs:
-      - validate
-    steps:
-      - uses: actions/checkout@v6
-      - uses: actions/setup-node@v6
-        with:
-          node-version: 23
-
-      - name: Cache dependencies
-        id: cache-dependencies
-        uses: actions/cache@v5
-        with:
-          path: node_modules
-          key: node_modules-${{ hashFiles('package-lock.json') }}
-
-      - name: Install dependencies
-        if: steps.cache-dependencies.outputs.cache-hit != 'true'
-        run: npm ci
-
-      - name: Run tests
-        run: npm run test
+  validations:
+    uses: croct-tech/renovate-public-presets/.github/workflows/javascript-validations.yml@unify-workflows
+    with:
+      run-security: true
+      use-private-registry: false
diff --git a/.github/workflows/deploy-published-releases.yaml b/.github/workflows/deploy-published-releases.yaml
@@ -7,51 +7,15 @@ on:
 
 jobs:
   deploy:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v6
-      - uses: actions/setup-node@v6
-        with:
-          registry-url: 'https://registry.npmjs.org'
-          node-version: 23
-        env:
-          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
-
-      - name: Cache dependencies
-        id: cache-dependencies
-        uses: actions/cache@v5
-        with:
-          path: node_modules
-          key: node_modules-${{ hashFiles('package-lock.json') }}
-
-      - name: Install dependencies
-        if: steps.cache-dependencies.outputs.cache-hit != 'true'
-        run: npm ci
-
-      - name: Build package
-        run: npm run build
-
-      - name: Prepare release
-        run: |-
-          cp LICENSE README.md build/
-          cd build
-          find . -type f -path '*/*\.js.map' -exec sed -i -e "s~../src~src~" {} +
-          sed -i -e "s~\"version\": \"0.0.0-dev\"~\"version\": \"${GITHUB_REF##*/}\"~" package.json
-          sed -i -e "s~\./build~.~" package.json
-          sed -i -e "s~./src~.~" package.json
-
-      - name: Publish pre-release to NPM
-        if: ${{ github.event.release.prerelease }}
-        run: |-
-          cd build
-          npm publish --access public --tag next
-        env:
-          NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
-
-      - name: Publish release to NPM
-        if: ${{ !github.event.release.prerelease }}
-        run: |-
-          cd build
-          npm publish --access public
-        env:
-          NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
+    uses: croct-tech/github-workflows/.github/workflows/publish-npm-package.yml@unify-workflows
+    with:
+      publish-access: "public"
+      prepare-script: >-
+        cp LICENSE README.md build/ &&
+        cd build &&
+        find . -type f -path '*/*\.js.map' -exec sed -i -e "s~../src~src~" {} + &&
+        sed -i -e "s~\"version\": \"0.0.0-dev\"~\"version\": \"${GITHUB_REF##*/}\"~" package.json &&
+        sed -i -e "s~\./build~.~" package.json &&
+        sed -i -e "s~./src~.~" package.json
+    secrets:
+      NPM_TOKEN: ${{ secrets.NPM_TOKEN }}