Skip to content

[NOTE] Regarding packaging trust #77

New issue
New issue
Open
Open
[NOTE] Regarding packaging trust#77
@junderw

Description

@junderw
junderw
opened on Feb 22, 2022

Github Actions CI is building the packages on npm

  • Starting with recent versions (I think v2.2.0)
  • Github Actions CI logs for the tagged commit will show the npm pack command output.
  • There you can verify the package hash etc. matches the integrity hash on your lock file.
  • I have not automated the publishing. I will be downloading the artifact from Github, then publishing it directly from my local PC. (verifying the hash before entering my 2FA)

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions