Switch to trusted publisher

.github/actions/setup/action.yml

@@ -37,7 +37,7 @@ runs:
               export-variables: true
               keys-case: bypass
         - name: Install Node
-          uses: actions/setup-node@v4
+          uses: actions/setup-node@v6
           with:
               node-version: ${{ env.NODE_VERSION }}
               registry-url: ${{ env.NPM_REGISTRY }}

.github/workflows/build.yml

@@ -36,7 +36,7 @@ jobs:
             matrix: ${{ steps.matrix.outputs.result }}
         steps:
             - name: Checkout Code
-              uses: actions/checkout@v4
+              uses: actions/checkout@v5
               with:
                   ref: ${{ inputs.ref }}
             - name: Setup Neon Environment
@@ -75,7 +75,7 @@ jobs:
             contents: write
         steps:
             - name: Checkout Code
-              uses: actions/checkout@v4
+              uses: actions/checkout@v5
               with:
                   ref: ${{ inputs.ref }}
             - name: Setup Neon Environment
@@ -116,7 +116,7 @@ jobs:
         runs-on: ubuntu-latest
         steps:
             - name: Checkout Code
-              uses: actions/checkout@v4
+              uses: actions/checkout@v5
               with:
                   ref: ${{ inputs.ref }}
             - name: Setup Neon Environment

.github/workflows/release.yml

@@ -8,32 +8,8 @@ on:
             - "v*"
 
 jobs:
-    setup:
-        name: Setup
-        runs-on: ubuntu-latest
-        steps:
-            - id: publish
-              name: Validate Publish Event
-              shell: bash
-              env:
-                  NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
-              run: |
-                  if [[ -z $NPM_TOKEN ]]; then
-                    echo "::error::Secret NPM_TOKEN is not defined for this GitHub repo."
-                    echo "::error::To publish to npm, this action requires:"
-                    echo "::error:: • an npm access token;"
-                    echo "::error:: • with Read-Write access to this project's npm packages;"
-                    echo "::error:: • stored as a repo secret named NPM_TOKEN."
-                    echo "::error::See https://docs.npmjs.com/about-access-tokens for info about creating npm tokens."
-                    echo "::error:: 💡 The simplest method is to create a Classic npm token of type Automation."
-                    echo "::error:: 💡 For greater security, consider using a Granual access token."
-                    echo "::error::See https://docs.github.com/en/actions/security-guides/using-secrets-in-github-actions for info about how to store GitHub repo secrets."
-                    exit 1
-                  fi
-
     build:
         name: Build
-        needs: [setup]
         permissions:
             contents: write
         uses: ./.github/workflows/build.yml
@@ -45,14 +21,14 @@ jobs:
 
     publish:
         name: Publish
-        needs: [setup, build]
+        needs: [build]
         runs-on: ubuntu-latest
         permissions:
             contents: write
             id-token: write
         steps:
             - name: Checkout Code
-              uses: actions/checkout@v4
+              uses: actions/checkout@v5
             - name: Setup Neon Environment
               uses: ./.github/actions/setup
               with:
@@ -65,8 +41,6 @@ jobs:
                   out-file-path: ./dist
             - name: Publish
               shell: bash
-              env:
-                  NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
               run: |
                   for p in ./dist/*.tgz ; do
                     npm publish --provenance --access public $p

.github/workflows/test.yml

@@ -54,7 +54,7 @@ jobs:
         runs-on: ubuntu-latest
         steps:
             - name: Checkout Code
-              uses: actions/checkout@v4
+              uses: actions/checkout@v5
             - name: Setup Neon Environment
               id: neon
               uses: ./.github/actions/setup

package.json

@@ -1,6 +1,6 @@
 {
   "name": "@nmshd/rs-crypto-node",
-  "version": "0.16.0",
+  "version": "0.16.1",
   "description": "Node.js Addon providing TypeScript bindings for rust-crypto (crypto-layer).",
   "homepage": "https://enmeshed.eu",
   "repository": "github:nmshd/crypto-layer-node",