Skip to content

ci: migrate to Node.js/npm and add Trusted Publishing support#19

Merged
nicomiguelino merged 2 commits intomainfrom
ci/migrate-to-npm
May 2, 2026
Merged

ci: migrate to Node.js/npm and add Trusted Publishing support#19
nicomiguelino merged 2 commits intomainfrom
ci/migrate-to-npm

Conversation

@nicomiguelino
Copy link
Copy Markdown
Collaborator

@nicomiguelino nicomiguelino commented May 2, 2026

Summary

  • Replace oven-sh/setup-bun with actions/setup-node@v6 (Node.js 24) in all CI jobs
  • Replace bun install/bun run with npm ci/npm run equivalents
  • Add package-lock.json for reproducible installs
  • Migrate release workflow to npm Trusted Publishing via OIDC (--provenance), removing the NPM_TOKEN secret dependency

Prerequisites before next release tag

Configure Trusted Publishers on npmjs.com for @screenly/edge-apps:

  • Repository: Screenly/edge-apps-library
  • Workflow: release.yml

Once configured, the NPM_TOKEN secret can be removed from the repo settings.

@nicomiguelino
ci: migrate to Node.js/npm and add Trusted Publishing support
27081e9 
- Replace oven-sh/setup-bun with actions/setup-node@v6 (Node.js 24)
- Replace bun install/run commands with npm ci/run equivalents
- Add package-lock.json for reproducible installs
- Add id-token: write permission for OIDC-based npm Trusted Publishing
- Replace bun publish + NPM_TOKEN with npm publish --provenance
@nicomiguelino nicomiguelino self-assigned this May 2, 2026
@nicomiguelino nicomiguelino requested a review from Copilot May 2, 2026 05:55
@nicomiguelino nicomiguelino marked this pull request as ready for review May 2, 2026 05:55
Copilot AI reviewed May 2, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Migrates the project’s GitHub Actions workflows from Bun to Node.js/npm, and updates the release pipeline to publish to npm using Trusted Publishing (OIDC + provenance) instead of an NPM_TOKEN secret.

Changes:

  • Switch CI jobs from oven-sh/setup-bun + bun install/run to actions/setup-node + npm ci / npm run.
  • Update release workflow to use npm publish --provenance and enable id-token: write permissions for OIDC.

Reviewed changes

Copilot reviewed 2 out of 3 changed files in this pull request and generated 1 comment.

File Description
.github/workflows/ci.yml Migrates all CI jobs from Bun commands to npm equivalents on Node.js 24.
.github/workflows/release.yml Migrates release job to Node.js/npm and switches publishing to npm Trusted Publishing with provenance via OIDC.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread .github/workflows/release.yml Outdated
@nicomiguelino nicomiguelino merged commit eca1ac8 into main May 2, 2026
4 checks passed
@nicomiguelino nicomiguelino deleted the ci/migrate-to-npm branch May 2, 2026 06:05
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

@nicomiguelino nicomiguelino

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@nicomiguelino