Commit 13de5c2
ci: upgrade npm to 11.5.1+ for OIDC trusted publishing
Node 22 ships with npm 10.x, which doesn't support the OIDC
trusted-publishing token exchange. Without this upgrade, the
next release of @jdevalk/emdash-plugin-seo will fail with
ENEEDAUTH even though OIDC is configured on npmjs.com and the
publish.yml workflow is set up correctly (id-token: write, no
NPM_TOKEN, no NODE_AUTH_TOKEN placeholder).
Install npm@latest into a user-local prefix ahead of the
existing global npm to sidestep the self-upgrade bug
(MODULE_NOT_FOUND: promise-retry). The separate-prefix install
was diagnosed and fixed in the seo-graph repo during the
seo-graph-core 0.3.0 / astro-seo-graph 0.2.4 release cycle —
applying it here preemptively so the next plugin release
doesn't hit the same wall.
Single-package repo with no workspace deps, so no pnpm pack
dance is needed — plain `npm publish` on the fresh npm is
sufficient.
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>1 parent 9d92458 commit 13de5c2
1 file changed
Lines changed: 16 additions & 0 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
23 | 23 | | |
24 | 24 | | |
25 | 25 | | |
| 26 | + | |
| 27 | + | |
| 28 | + | |
| 29 | + | |
| 30 | + | |
| 31 | + | |
| 32 | + | |
| 33 | + | |
| 34 | + | |
| 35 | + | |
| 36 | + | |
| 37 | + | |
| 38 | + | |
| 39 | + | |
| 40 | + | |
| 41 | + | |
26 | 42 | | |
0 commit comments