From 144c4d5dc92253460912c6a431408041498dae7a Mon Sep 17 00:00:00 2001 From: "Kody (bot)" <72270156+kody-bot@users.noreply.github.com> Date: Tue, 12 May 2026 12:41:09 -0600 Subject: [PATCH 1/4] ci: harden npm release workflow --- .github/workflows/validate.yml | 37 ++++++++++++++-------------------- 1 file changed, 15 insertions(+), 22 deletions(-) diff --git a/.github/workflows/validate.yml b/.github/workflows/validate.yml index 5d01375..022e4c6 100644 --- a/.github/workflows/validate.yml +++ b/.github/workflows/validate.yml @@ -22,39 +22,39 @@ jobs: bun: [latest] runs-on: ubuntu-latest steps: - - name: ⬇️ Checkout repo + - name: ⬇️ Checkout repo uses: actions/checkout@v5 - - name: ⎔ Setup bun + - name: ⎔ Setup bun uses: oven-sh/setup-bun@v2 with: bun-version: ${{ matrix.bun }} - - name: 📥 Download deps + - name: 📥 Download deps run: bun install env: HUSKY_SKIP_INSTALL: true - - name: ▶️ Run validate script + - name: ▶️ Run validate script run: bun run validate test: runs-on: ubuntu-latest steps: - - name: ⬇️ Checkout repo + - name: ⬇️ Checkout repo uses: actions/checkout@v5 - - name: ⎔ Setup bun + - name: ⎔ Setup bun uses: oven-sh/setup-bun@v2 with: bun-version: latest - - name: 📥 Download deps + - name: 📥 Download deps run: bun install env: HUSKY_SKIP_INSTALL: true - - name: 🧪 Run tests + - name: 🧪 Run tests run: bun run test release: @@ -67,6 +67,7 @@ jobs: pull-requests: write # to be able to comment on released pull requests env: NPM_CONFIG_PROVENANCE: 'true' + NPM_CONFIG_IGNORE_SCRIPTS: 'true' GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} if: ${{ github.repository == 'epicweb-dev/eprec' && @@ -74,24 +75,16 @@ jobs: github.ref) && github.event_name == 'push' }} steps: - name: ⬇️ Checkout repo - uses: actions/checkout@v5 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5 - name: ⎔ Setup node - uses: actions/setup-node@v6 - with: - node-version: lts/* - - - name: ⎔ Setup bun - uses: oven-sh/setup-bun@v2 + uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6 with: - bun-version: latest - - - name: 📥 Download deps - run: bun install - env: - HUSKY_SKIP_INSTALL: true + node-version: 24 + registry-url: https://registry.npmjs.org + package-manager-cache: false - name: 🚀 Release - uses: cycjimmy/semantic-release-action@v5.0.2 + uses: cycjimmy/semantic-release-action@ba330626c4750c19d8299de843f05c7aa5574f62 # v5.0.2 with: semantic_version: 25 From 614d796a3df8508a6b65e8297042704a31679145 Mon Sep 17 00:00:00 2001 From: "Kody (bot)" <72270156+kody-bot@users.noreply.github.com> Date: Tue, 12 May 2026 12:48:35 -0600 Subject: [PATCH 2/4] ci: fix workflow utf-8 encoding --- .github/workflows/validate.yml | 18 +++++++++--------- 1 file changed, 9 insertions(+), 9 deletions(-) diff --git a/.github/workflows/validate.yml b/.github/workflows/validate.yml index 022e4c6..cbbf505 100644 --- a/.github/workflows/validate.yml +++ b/.github/workflows/validate.yml @@ -22,39 +22,39 @@ jobs: bun: [latest] runs-on: ubuntu-latest steps: - - name: ⬇️ Checkout repo + - name: ⬇️ Checkout repo uses: actions/checkout@v5 - - name: ⎔ Setup bun + - name: ⎔ Setup bun uses: oven-sh/setup-bun@v2 with: bun-version: ${{ matrix.bun }} - - name: 📥 Download deps + - name: 📥 Download deps run: bun install env: HUSKY_SKIP_INSTALL: true - - name: ▶️ Run validate script + - name: ▶️ Run validate script run: bun run validate test: runs-on: ubuntu-latest steps: - - name: ⬇️ Checkout repo + - name: ⬇️ Checkout repo uses: actions/checkout@v5 - - name: ⎔ Setup bun + - name: ⎔ Setup bun uses: oven-sh/setup-bun@v2 with: bun-version: latest - - name: 📥 Download deps + - name: 📥 Download deps run: bun install env: HUSKY_SKIP_INSTALL: true - - name: 🧪 Run tests + - name: 🧪 Run tests run: bun run test release: @@ -77,7 +77,7 @@ jobs: - name: ⬇️ Checkout repo uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5 - - name: ⎔ Setup node + - name: ⎄ Setup node uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6 with: node-version: 24 From aeca82ce5ee1025c5fa682a507f31679d04ffeb0 Mon Sep 17 00:00:00 2001 From: "Kody (bot)" <72270156+kody-bot@users.noreply.github.com> Date: Tue, 12 May 2026 17:15:12 -0600 Subject: [PATCH 3/4] ci: remove emoji from workflow step names --- .github/workflows/validate.yml | 22 +++++++++++----------- 1 file changed, 11 insertions(+), 11 deletions(-) diff --git a/.github/workflows/validate.yml b/.github/workflows/validate.yml index cbbf505..e2e00be 100644 --- a/.github/workflows/validate.yml +++ b/.github/workflows/validate.yml @@ -22,39 +22,39 @@ jobs: bun: [latest] runs-on: ubuntu-latest steps: - - name: ⬇️ Checkout repo + - name: Checkout repo uses: actions/checkout@v5 - - name: ⎔ Setup bun + - name: Setup bun uses: oven-sh/setup-bun@v2 with: bun-version: ${{ matrix.bun }} - - name: 📥 Download deps + - name: Download deps run: bun install env: HUSKY_SKIP_INSTALL: true - - name: ▶️ Run validate script + - name: Run validate script run: bun run validate test: runs-on: ubuntu-latest steps: - - name: ⬇️ Checkout repo + - name: Checkout repo uses: actions/checkout@v5 - - name: ⎔ Setup bun + - name: Setup bun uses: oven-sh/setup-bun@v2 with: bun-version: latest - - name: 📥 Download deps + - name: Download deps run: bun install env: HUSKY_SKIP_INSTALL: true - - name: 🧪 Run tests + - name: Run tests run: bun run test release: @@ -74,17 +74,17 @@ jobs: contains('refs/heads/main,refs/heads/beta,refs/heads/next,refs/heads/next-major,refs/heads/alpha', github.ref) && github.event_name == 'push' }} steps: - - name: ⬇️ Checkout repo + - name: Checkout repo uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5 - - name: ⎄ Setup node + - name: Setup node uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6 with: node-version: 24 registry-url: https://registry.npmjs.org package-manager-cache: false - - name: 🚀 Release + - name: Release uses: cycjimmy/semantic-release-action@ba330626c4750c19d8299de843f05c7aa5574f62 # v5.0.2 with: semantic_version: 25 From 9a459e4d69749eba2f7bc4532b2aaf2b49151218 Mon Sep 17 00:00:00 2001 From: "Kody (bot)" <72270156+kody-bot@users.noreply.github.com> Date: Tue, 12 May 2026 18:06:14 -0600 Subject: [PATCH 4/4] ci: preserve existing workflow labels --- .github/workflows/validate.yml | 22 +++++++++++----------- 1 file changed, 11 insertions(+), 11 deletions(-) diff --git a/.github/workflows/validate.yml b/.github/workflows/validate.yml index e2e00be..363e606 100644 --- a/.github/workflows/validate.yml +++ b/.github/workflows/validate.yml @@ -22,39 +22,39 @@ jobs: bun: [latest] runs-on: ubuntu-latest steps: - - name: Checkout repo + - name: ⬇️ Checkout repo uses: actions/checkout@v5 - - name: Setup bun + - name: ⎔ Setup bun uses: oven-sh/setup-bun@v2 with: bun-version: ${{ matrix.bun }} - - name: Download deps + - name: 📥 Download deps run: bun install env: HUSKY_SKIP_INSTALL: true - - name: Run validate script + - name: ▶️ Run validate script run: bun run validate test: runs-on: ubuntu-latest steps: - - name: Checkout repo + - name: ⬇️ Checkout repo uses: actions/checkout@v5 - - name: Setup bun + - name: ⎔ Setup bun uses: oven-sh/setup-bun@v2 with: bun-version: latest - - name: Download deps + - name: 📥 Download deps run: bun install env: HUSKY_SKIP_INSTALL: true - - name: Run tests + - name: 🧪 Run tests run: bun run test release: @@ -74,17 +74,17 @@ jobs: contains('refs/heads/main,refs/heads/beta,refs/heads/next,refs/heads/next-major,refs/heads/alpha', github.ref) && github.event_name == 'push' }} steps: - - name: Checkout repo + - name: ⬇️ Checkout repo uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5 - - name: Setup node + - name: ⎔ Setup node uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6 with: node-version: 24 registry-url: https://registry.npmjs.org package-manager-cache: false - - name: Release + - name: 🚀 Release uses: cycjimmy/semantic-release-action@ba330626c4750c19d8299de843f05c7aa5574f62 # v5.0.2 with: semantic_version: 25