Publish to npm fixes (#36)

* provide npm token in env * add manual trigger to publish workflow * bump version * accept tag name and release id from manual trigger * log release id * put back missing steps * fix permissions to update release notes
2025-07-01 14:33:34 +02:00
parent f497f8e676
commit 7620ba60fa
3 changed files with 42 additions and 11 deletions
--- a/.github/workflows/publish.yml
+++ b/.github/workflows/publish.yml
@@ -3,13 +3,21 @@ name: Publish to npm
 on:
  release:
    types: [released]
  workflow_dispatch:
    inputs:
      tag_name:
        description: "Release tag (e.g., v1.2.3)"
        required: true
      release_id:
        description: "GitHub release ID"
        required: true
 concurrency:
  group: publish
  cancel-in-progress: true
 permissions:
-  contents: read
+  contents: write
  packages: write
 env:
@@ -24,27 +32,36 @@ jobs:
    steps:
      - uses: actions/checkout@v4
        with:
-          ref: ${{ github.event.release.tag_name }}
+          ref: ${{ github.event.release.tag_name || inputs.tag_name }}
-      
+
      - name: Setup Node
        uses: ./.github/actions/setup-node
-        
+
      - name: Configure npm authentication
        run: |
          echo "//registry.npmjs.org/:_authToken=${{ secrets.NPM_TOKEN }}" > ~/.npmrc
      - name: Download release assets
        uses: actions/github-script@v7
        env:
          RELEASE_ID: ${{ inputs.release_id }}
        with:
          script: |
            const fs = require('fs');
            const path = require('path');
-            
+
-            // Get the release assets
+            const releaseId = context.payload.release?.id || process.env.RELEASE_ID;
            console.log("releaseId:", releaseId);
            if (!releaseId) {
              core.setFailed('No release ID found.');
              return;
            }
            const release = await github.rest.repos.getRelease({
              owner: context.repo.owner,
              repo: context.repo.repo,
-              release_id: context.payload.release.id
+              release_id: releaseId
            });
            // Find the .tgz file
@@ -101,14 +118,28 @@ jobs:
          npm publish "$PACKAGE_FILE"
          echo "✅ Successfully published to npm!"
        env:
          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
      - name: Update release description
        uses: actions/github-script@v7
        env:
          RELEASE_ID: ${{ inputs.release_id }}
        with:
          script: |
            const releaseId = context.payload.release?.id || process.env.RELEASE_ID;;
            // Fetch the release to get the current body
            const release = await github.rest.repos.getRelease({
              owner: context.repo.owner,
              repo: context.repo.repo,
              release_id: releaseId
            });
            const currentBody = release.data.body || '';
            await github.rest.repos.updateRelease({
              owner: context.repo.owner,
              repo: context.repo.repo,
-              release_id: context.payload.release.id,
+              release_id: releaseId,
-              body: context.payload.release.body + '\n\n✅ **Published to npm registry**'
+              body: currentBody + '\n\n✅ **Published to npm registry**'
            });
--- a/npx-cli/package.json
+++ b/npx-cli/package.json
@@ -1,7 +1,7 @@
 {
  "name": "vibe-kanban",
  "private": false,
-  "version": "0.0.29",
+  "version": "0.0.30",
  "main": "index.js",
  "bin": {
    "vibe-kanban": "bin/cli.js"
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
  "name": "vibe-kanban",
-  "version": "0.0.29",
+  "version": "0.0.30",
  "private": true,
  "scripts": {
    "dev": "concurrently \"cargo watch -w backend -x 'run --manifest-path backend/Cargo.toml'\" \"npm run frontend:dev\"",