From b4f3648baec09b4580cdfdbf6d7bfe06e99ebd25 Mon Sep 17 00:00:00 2001 From: Precious Oritsedere Date: Wed, 21 Jan 2026 10:00:28 +0000 Subject: [PATCH 1/9] Updated publish workflow --- .github/workflows/ci.yml | 12 ++++-------- 1 file changed, 4 insertions(+), 8 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 284ffa8c..8a7bf43b 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -16,9 +16,7 @@ jobs: runs-on: ubuntu-latest strategy: matrix: - node-version: - - 20.x - - 22.x + node-version: [20, 22, 24] steps: - uses: actions/checkout@v6 - name: Use Node.js ${{ matrix.node-version }} @@ -30,7 +28,7 @@ jobs: - run: npm run build - run: npm run doc - name: Save build - if: matrix.node-version == '20.x' + if: matrix.node-version == '20' uses: actions/upload-artifact@v6 with: name: build @@ -73,7 +71,7 @@ jobs: name: build - uses: actions/setup-node@v6 with: - node-version: 20.x + node-version: 20 - uses: rlespinasse/github-slug-action@v4.x - name: Append commit hash to package version run: 'sed -i -E "s/(\"version\": *\"[^\"]+)/\1-${GITHUB_SHA_SHORT}/" package.json' @@ -82,7 +80,6 @@ jobs: - uses: JS-DevTools/npm-publish@v4.1.4 if: github.actor != 'dependabot[bot]' && github.actor != 'dependabot-preview[bot]' with: - token: ${{ secrets.NPM_TOKEN }} tag: ${{ env.GITHUB_REF_SLUG }} npm-publish-latest: @@ -95,11 +92,10 @@ jobs: name: build - uses: actions/setup-node@v6 with: - node-version: 20.x + node-version: 20 - name: Disable pre- and post-publish actions run: 'sed -i -E "s/\"((pre|post)publish)/\"ignore:\1/" package.json' - uses: JS-DevTools/npm-publish@v4.1.4 if: github.actor != 'dependabot[bot]' && github.actor != 'dependabot-preview[bot]' with: - token: ${{ secrets.NPM_TOKEN }} tag: latest From 0211d5dae18081862c9bf82dca496f411e5699eb Mon Sep 17 00:00:00 2001 From: Precious Oritsedere Date: Wed, 21 Jan 2026 10:09:50 +0000 Subject: [PATCH 2/9] changed matrix node version to number --- .github/workflows/ci.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 8a7bf43b..5b489001 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -28,7 +28,7 @@ jobs: - run: npm run build - run: npm run doc - name: Save build - if: matrix.node-version == '20' + if: matrix.node-version == 20 uses: actions/upload-artifact@v6 with: name: build From 345e6d47aadf4e8fe4ebf7d33022d08045ef5b4f Mon Sep 17 00:00:00 2001 From: Precious Oritsedere Date: Wed, 21 Jan 2026 10:19:53 +0000 Subject: [PATCH 3/9] fixed build fail --- .github/workflows/ci.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 5b489001..90eb5833 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -72,6 +72,7 @@ jobs: - uses: actions/setup-node@v6 with: node-version: 20 + registry-url: 'https://registry.npmjs.org' - uses: rlespinasse/github-slug-action@v4.x - name: Append commit hash to package version run: 'sed -i -E "s/(\"version\": *\"[^\"]+)/\1-${GITHUB_SHA_SHORT}/" package.json' @@ -93,6 +94,7 @@ jobs: - uses: actions/setup-node@v6 with: node-version: 20 + registry-url: 'https://registry.npmjs.org' - name: Disable pre- and post-publish actions run: 'sed -i -E "s/\"((pre|post)publish)/\"ignore:\1/" package.json' - uses: JS-DevTools/npm-publish@v4.1.4 From 89316f29187e98438cfd62fdb241c2f60da6aea9 Mon Sep 17 00:00:00 2001 From: Precious Oritsedere Date: Wed, 21 Jan 2026 10:26:33 +0000 Subject: [PATCH 4/9] added permissions to workflow --- .github/workflows/ci.yml | 8 +++++--- 1 file changed, 5 insertions(+), 3 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 90eb5833..1915d95e 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -1,7 +1,5 @@ name: CI -permissions: - contents: write - pull-requests: write + on: push: branches: @@ -11,6 +9,10 @@ on: - main workflow_dispatch: +permissions: + id-token: write # Required for OIDC + contents: read + jobs: build: runs-on: ubuntu-latest From 431ffb19cdeb029e8e0c66e60f423820a2fdd490 Mon Sep 17 00:00:00 2001 From: Precious Oritsedere Date: Wed, 21 Jan 2026 10:44:40 +0000 Subject: [PATCH 5/9] =?UTF-8?q?-=20Added=20permissions=20at=20the=20job=20?= =?UTF-8?q?level=20for=20both=20publish=20jobs=20=E2=80=94=20id-token:=20w?= =?UTF-8?q?rite=20is=20required=20for=20OIDC=20at=20the=20job=20level,=20n?= =?UTF-8?q?ot=20just=20the=20workflow=20level.?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Replaced JS-DevTools/npm-publish with direct npm publish commands — setup-node with registry-url configures npm to use OIDC, and direct npm publish will use that configuration. --- .github/workflows/ci.yml | 16 ++++++++++------ 1 file changed, 10 insertions(+), 6 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 1915d95e..1ec0e1eb 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -67,6 +67,9 @@ jobs: npm-publish-build: needs: build runs-on: ubuntu-latest + permissions: + id-token: write # Required for OIDC + contents: read steps: - uses: actions/download-artifact@v7 with: @@ -80,15 +83,17 @@ jobs: run: 'sed -i -E "s/(\"version\": *\"[^\"]+)/\1-${GITHUB_SHA_SHORT}/" package.json' - name: Disable pre- and post-publish actions run: 'sed -i -E "s/\"((pre|post)publish)/\"ignore:\1/" package.json' - - uses: JS-DevTools/npm-publish@v4.1.4 + - name: Publish to npm if: github.actor != 'dependabot[bot]' && github.actor != 'dependabot-preview[bot]' - with: - tag: ${{ env.GITHUB_REF_SLUG }} + run: npm publish --tag ${{ env.GITHUB_REF_SLUG }} npm-publish-latest: needs: [build, npm-publish-build] runs-on: ubuntu-latest if: github.ref == 'refs/heads/main' + permissions: + id-token: write # Required for OIDC + contents: read steps: - uses: actions/download-artifact@v7 with: @@ -99,7 +104,6 @@ jobs: registry-url: 'https://registry.npmjs.org' - name: Disable pre- and post-publish actions run: 'sed -i -E "s/\"((pre|post)publish)/\"ignore:\1/" package.json' - - uses: JS-DevTools/npm-publish@v4.1.4 + - name: Publish to npm if: github.actor != 'dependabot[bot]' && github.actor != 'dependabot-preview[bot]' - with: - tag: latest + run: npm publish --tag latest From 0ef86395890a5a11f9ff4b9b062b7004390da595 Mon Sep 17 00:00:00 2001 From: Precious Oritsedere Date: Wed, 21 Jan 2026 10:58:02 +0000 Subject: [PATCH 6/9] Added the npm install -g npm@latest step runs before publishing to ensure OIDC support. --- .github/workflows/ci.yml | 20 ++++++++++++++++++++ 1 file changed, 20 insertions(+) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 1ec0e1eb..1e5a9101 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -78,11 +78,21 @@ jobs: with: node-version: 20 registry-url: 'https://registry.npmjs.org' + - name: Update npm to latest (required for OIDC) + run: npm install -g npm@latest - uses: rlespinasse/github-slug-action@v4.x - name: Append commit hash to package version run: 'sed -i -E "s/(\"version\": *\"[^\"]+)/\1-${GITHUB_SHA_SHORT}/" package.json' - name: Disable pre- and post-publish actions run: 'sed -i -E "s/\"((pre|post)publish)/\"ignore:\1/" package.json' + - name: Clear npm authentication cache + run: | + rm -rf ~/.npm/_cacache || true + rm -f ~/.npmrc || true + - name: Verify npm version + run: npm --version + - name: Check npm configuration + run: npm config list - name: Publish to npm if: github.actor != 'dependabot[bot]' && github.actor != 'dependabot-preview[bot]' run: npm publish --tag ${{ env.GITHUB_REF_SLUG }} @@ -102,8 +112,18 @@ jobs: with: node-version: 20 registry-url: 'https://registry.npmjs.org' + - name: Update npm to latest (required for OIDC) + run: npm install -g npm@latest - name: Disable pre- and post-publish actions run: 'sed -i -E "s/\"((pre|post)publish)/\"ignore:\1/" package.json' + - name: Clear npm authentication cache + run: | + rm -rf ~/.npm/_cacache || true + rm -f ~/.npmrc || true + - name: Verify npm version + run: npm --version + - name: Check npm configuration + run: npm config list - name: Publish to npm if: github.actor != 'dependabot[bot]' && github.actor != 'dependabot-preview[bot]' run: npm publish --tag latest From 3f95448ad3cab307470970f1f49609de4b42e219 Mon Sep 17 00:00:00 2001 From: Precious Oritsedere Date: Wed, 21 Jan 2026 11:09:04 +0000 Subject: [PATCH 7/9] added Debug repository information to try to trace build failing error --- .github/workflows/ci.yml | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 1e5a9101..aa3e2cdb 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -93,6 +93,12 @@ jobs: run: npm --version - name: Check npm configuration run: npm config list + - name: Debug repository information + run: | + echo "GitHub Repository: ${{ github.repository }}" + echo "GitHub Repository Owner: ${{ github.repository_owner }}" + echo "GitHub Repository Name: ${{ github.event.repository.name }}" + cat package.json | grep -A 2 '"repository"' - name: Publish to npm if: github.actor != 'dependabot[bot]' && github.actor != 'dependabot-preview[bot]' run: npm publish --tag ${{ env.GITHUB_REF_SLUG }} From b85ed31077c94cef3b90b34bfee8641c7f4b8ac7 Mon Sep 17 00:00:00 2001 From: Precious Oritsedere Date: Wed, 21 Jan 2026 11:18:10 +0000 Subject: [PATCH 8/9] Changed the repository URL to git+https://github.com/SolidOS/solid-ui.git to match the actual GitHub repository name. --- package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/package.json b/package.json index 8fe98c32..ba23a09c 100644 --- a/package.json +++ b/package.json @@ -42,7 +42,7 @@ }, "repository": { "type": "git", - "url": "git+https://github.com/solidos/solid-ui.git" + "url": "git+https://github.com/SolidOS/solid-ui.git" }, "keywords": [ "solid", From e7dfc3f365753285ffb91905bc9bd01a2f1bd5bc Mon Sep 17 00:00:00 2001 From: Precious Oritsedere Date: Wed, 21 Jan 2026 11:26:16 +0000 Subject: [PATCH 9/9] chore: removed debug repository information --- .github/workflows/ci.yml | 6 ------ 1 file changed, 6 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index aa3e2cdb..1e5a9101 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -93,12 +93,6 @@ jobs: run: npm --version - name: Check npm configuration run: npm config list - - name: Debug repository information - run: | - echo "GitHub Repository: ${{ github.repository }}" - echo "GitHub Repository Owner: ${{ github.repository_owner }}" - echo "GitHub Repository Name: ${{ github.event.repository.name }}" - cat package.json | grep -A 2 '"repository"' - name: Publish to npm if: github.actor != 'dependabot[bot]' && github.actor != 'dependabot-preview[bot]' run: npm publish --tag ${{ env.GITHUB_REF_SLUG }}