diff --git a/.bumpy/initial-release.md b/.bumpy/initial-release.md deleted file mode 100644 index bb7db89..0000000 --- a/.bumpy/initial-release.md +++ /dev/null @@ -1,20 +0,0 @@ ---- -'fledgling': major ---- - -Initial release 🐣 - -`fledgling` claims your npm package names and sets up token-less (OIDC) trusted publishing — for a single package or a whole monorepo. - -- **Claim names** by publishing a minimal `package.json`-only placeholder, so you can configure trusted publishing before your first real release -- **Set up trusted publishing** via npm's own `npm trust` (OIDC) — no `NPM_TOKEN`, no clicking through the npm website -- **GitHub, GitLab, and CircleCI** providers, supporting every option `npm trust` accepts -- **Monorepo-aware** — npm / yarn / bun `workspaces` and pnpm, plus single-package repos; target packages by name or glob -- **Interactive wizard** (powered by clack), with `add`, `sync`, and `init` subcommands; goes non-interactive with `--yes` or in CI -- **`fledgling sync`** reconciles trusted publishing across every package against your config, showing the exact drift before fixing it -- **2FA handled by npm itself** — an interactive browser approval (cached ~5 min) covers a whole run; pass `--otp`, or `--otp-secret` / `$FLEDGLING_OTP_SECRET` (a TOTP secret or `otpauth://` URI) for non-interactive use -- **Exclude packages** from fledgling with a `fledgling.ignore` list (names or globs), beyond `"private": true` -- **Idempotent** — re-run any time you add a package; it only does what's missing -- **Configurable** via a `fledgling` block in `package.json`, with CLI flags as per-run overrides -- **Shell completions** for zsh, bash, and fish -- **`--dry-run`** to preview the plan without changing anything diff --git a/CHANGELOG.md b/CHANGELOG.md new file mode 100644 index 0000000..4260c15 --- /dev/null +++ b/CHANGELOG.md @@ -0,0 +1,19 @@ +# Changelog + +## 1.0.0 +2026-06-17 + +- *(major)* - Initial release 🐣 + `fledgling` claims your npm package names and sets up token-less (OIDC) trusted publishing — for a single package or a whole monorepo. + - **Claim names** by publishing a minimal `package.json`-only placeholder, so you can configure trusted publishing before your first real release + - **Set up trusted publishing** via npm's own `npm trust` (OIDC) — no `NPM_TOKEN`, no clicking through the npm website + - **GitHub, GitLab, and CircleCI** providers, supporting every option `npm trust` accepts + - **Monorepo-aware** — npm / yarn / bun `workspaces` and pnpm, plus single-package repos; target packages by name or glob + - **Interactive wizard** (powered by clack), with `add`, `sync`, and `init` subcommands; goes non-interactive with `--yes` or in CI + - **`fledgling sync`** reconciles trusted publishing across every package against your config, showing the exact drift before fixing it + - **2FA handled by npm itself** — an interactive browser approval (cached ~5 min) covers a whole run; pass `--otp`, or `--otp-secret` / `$FLEDGLING_OTP_SECRET` (a TOTP secret or `otpauth://` URI) for non-interactive use + - **Exclude packages** from fledgling with a `fledgling.ignore` list (names or globs), beyond `"private": true` + - **Idempotent** — re-run any time you add a package; it only does what's missing + - **Configurable** via a `fledgling` block in `package.json`, with CLI flags as per-run overrides + - **Shell completions** for zsh, bash, and fish + - **`--dry-run`** to preview the plan without changing anything diff --git a/package.json b/package.json index 1f1b43b..96c2959 100644 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "fledgling", - "version": "0.0.0", + "version": "1.0.0", "description": "🐣 Hatch your new npm package safely - claim the name on npm and set up / sync trusted publishing settings, for one package or a whole monorepo.", "keywords": [ "npm",