hotfix: v3.1.3 (#131) #43

Workflow file for this run

.github/workflows/release.yml at ff32029

	name: Release

	on:
	push:
	branches:
	- '[0-9].[0-9].x'
	- '[0-9].x.x'
	- '[0-9].x'
	- main
	- next
	- rc
	- beta
	- alpha

	permissions:
	contents: read

	jobs:
	# CodeQL
	codeql:
	name: CodeQL
	runs-on: ubuntu-latest
	permissions:
	# read
	actions: read
	contents: read
	# write
	security-events: write
	steps:
	# Harden Runner
	- name: Harden Runner # Audit all outbound calls
	uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
	with:
	egress-policy: audit
	# Checkout
	- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	with:
	persist-credentials: false
	# Initialize CodeQL
	- name: Initialize CodeQL
	uses: github/codeql-action/init@28deaeda66b76a05916b6923827895f2b14ab387 # v3.28.16
	with:
	languages: javascript
	# Setup Node
	- name: Setup Node
	uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4.4.0
	with:
	node-version: "lts/*"
	# Install Dependencies
	- name: Install Dependencies
	run: npm ci
	# Build Source Code
	- name: Build Source Code
	run: npm run build
	# Analyze CodeQL
	- name: Analyze CodeQL
	uses: github/codeql-action/analyze@28deaeda66b76a05916b6923827895f2b14ab387 # v3.28.16
	with:
	category: /language:javascript
	# Scorecard
	scorecard:
	name: Scorecard
	runs-on: ubuntu-latest
	permissions:
	# read
	actions: read
	checks: read
	contents: read
	issues: read
	pull-requests: read
	# write
	id-token: write
	security-events: write
	steps:
	# Harden Runner
	- name: Harden Runner # Audit all outbound calls
	uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
	with:
	egress-policy: audit
	# Checkout
	- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	with:
	persist-credentials: false
	# Analyze OSSF Scorecard
	- name: Analyze OSSF Scorecard
	uses: ossf/scorecard-action@f49aabe0b5af0936a0987cfb85d86b75731b0186 # v2.4.1
	with:
	results_file: ossf_scorecard.sarif
	results_format: sarif
	publish_results: true
	repo_token: ${{ secrets.TOKEN }}
	# Upload to GitHub Actions Artifact
	- name: Upload to GitHub Actions Artifact
	uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
	with:
	name: OSSF Scorecard
	path: ossf_scorecard.sarif
	overwrite: true
	# Upload to GitHub Code Scanning
	- name: Upload to GitHub Code Scanning
	uses: github/codeql-action/upload-sarif@28deaeda66b76a05916b6923827895f2b14ab387 # v3.28.16
	with:
	sarif_file: ossf_scorecard.sarif
	# Test
	test:
	name: Test
	runs-on: ubuntu-latest
	steps:
	# Harden Runner
	- name: Harden Runner # Audit all outbound calls
	uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
	with:
	egress-policy: audit
	# Checkout
	- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	with:
	fetch-depth: 2 # At least fetch the last two commits for comparison
	persist-credentials: false
	# Setup Node
	- name: Setup Node
	uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4.4.0
	with:
	node-version: "lts/*"
	# Install Dependencies
	- name: Install Dependencies
	run: npm ci
	# Build Source Code
	- name: Build Source Code
	run: npm run build
	# Run Test and Generate Coverage
	- name: Run Test and Generate Coverage
	run: npm test
	# Upload Coverage Reports to Codecov
	- name: Upload Coverage Reports to Codecov
	uses: codecov/codecov-action@ad3126e916f78f00edff4ed0317cf185271ccc2d # v5.4.2
	with:
	token: ${{ secrets.CODECOV_TOKEN }}
	# Release
	release:
	name: Release
	needs: [codeql, scorecard, test]
	runs-on: ubuntu-latest
	permissions:
	# write
	contents: write
	issues: write
	steps:
	# Harden Runner
	- name: Harden Runner # Audit all outbound calls
	uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
	with:
	egress-policy: audit
	# Checkout
	- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	with:
	fetch-depth: 0 # All commits need to be analyzed
	token: ${{ secrets.TOKEN }}
	# Import GPG
	- name: Import GPG
	uses: crazy-max/ghaction-import-gpg@e89d40939c28e39f97cf32126055eeae86ba74ec # v6.3.0
	with:
	gpg_private_key: ${{ secrets.GPG_PRIVATE_KEY }}
	passphrase: ${{ secrets.PASSPHRASE }}
	git_user_signingkey: true
	git_commit_gpgsign: true
	# Setup Node
	- name: Setup Node
	uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4.4.0
	with:
	node-version: "lts/*"
	# Install Dependencies
	- name: Install Dependencies
	run: npm ci
	# Build Source Code
	- name: Build Source Code
	run: npm run build
	# Release and Publish to NPM
	- name: Release and Publish to NPM
	env:
	GIT_AUTHOR_NAME: ${{ vars.GIT_AUTHOR_NAME }}
	GIT_AUTHOR_EMAIL: ${{ vars.GIT_AUTHOR_EMAIL }}
	GIT_COMMITTER_NAME: ${{ vars.GIT_COMMITTER_NAME }}
	GIT_COMMITTER_EMAIL: ${{ vars.GIT_COMMITTER_EMAIL }}
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
	run: npx semantic-release
	# Rebase Development Branch
	- name: Rebase Development Branch
	run: \|
	git checkout dev
	git pull --rebase origin main
	git push --force origin dev

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

hotfix: v3.1.3 (#131) #43

Workflow file

hotfix: v3.1.3 (#131) #43

Uh oh!

Workflow file for this run