Releases
Normal release flow
- update
CHANGELOG.mdunder## Unreleased - run
npm run release:dry-run - run
npm run release - push the branch and tag
- let GitHub Actions publish the tagged release to npm
Trusted publishing
This repo uses npm Trusted Publishing from GitHub Actions.
That replaced the older NPM_TOKEN secret flow.
If the publish job fails with a transient Sigstore/Rekor provenance error, rerun the failed job before changing code. The package may have built and tested cleanly while the transparency-log request failed outside the repo.
Docs publishing
The docs site publishes through GitHub Pages.
With Pages enabled for the repo, pushes to main should rebuild and redeploy the docs automatically through the docs workflow.