From 0c1124a62151fd80b4d033b8d6cf39dc23730cf5 Mon Sep 17 00:00:00 2001 From: Michael Feher Date: Wed, 12 Mar 2025 10:43:30 -0400 Subject: [PATCH] ci: coverage reporters and provenance --- .github/workflows/CI.yml | 5 +++++ .github/workflows/release.yml | 4 +++- package-lock.json | 4 ++-- package.json | 3 +++ 4 files changed, 13 insertions(+), 3 deletions(-) diff --git a/.github/workflows/CI.yml b/.github/workflows/CI.yml index 577bf2b..970c6b4 100644 --- a/.github/workflows/CI.yml +++ b/.github/workflows/CI.yml @@ -26,3 +26,8 @@ jobs: - name: Unit Tests with Coverage run: npm run test:cov + + - name: Upload coverage reports to Codecov + uses: codecov/codecov-action@v5 + with: + token: ${{ secrets.CODECOV_TOKEN }} \ No newline at end of file diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 41fdcdb..46a36ff 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -24,7 +24,9 @@ jobs: with: node-version: '20.x' cache: 'npm' - - run: npm install + - run: npm clean-install + - name: Verify the integrity of provenance + run: npm audit signatures - run: npm run build - run: npm run release env: diff --git a/package-lock.json b/package-lock.json index 9194b98..b739866 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,12 +1,12 @@ { "name": "@algorandfoundation/algo-models", - "version": "0.0.6", + "version": "1.0.0-canary.1", "lockfileVersion": 3, "requires": true, "packages": { "": { "name": "@algorandfoundation/algo-models", - "version": "0.0.6", + "version": "1.0.0-canary.1", "license": "AGPL-3.0-or-later", "dependencies": { "ajv": "^8.12.0", diff --git a/package.json b/package.json index a312759..7f94c4a 100644 --- a/package.json +++ b/package.json @@ -23,6 +23,9 @@ }, "author": "", "license": "AGPL-3.0-or-later", + "publishConfig": { + "provenance": true + }, "devDependencies": { "@commitlint/cli": "^17.8.0", "@commitlint/config-conventional": "^17.8.0",