Skip to content

fix: provenance & oidc #284

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
TobiTenno merged 2 commits into from
Oct 15, 2025
Merged

fix: provenance & oidc #284

TobiTenno merged 2 commits into from
Oct 15, 2025

Conversation

@TobiTenno
Copy link
Member

@TobiTenno TobiTenno commented Oct 14, 2025
edited by coderabbitai bot
Loading

What did you fix?

provenance & oidc

Reproduction steps

do a release

Evidence/screenshot/link to line

Considerations

  • Does this contain a new dependency? [No]
  • Does this introduce opinionated data formatting or manual data entry? [No]
  • Does this pr include updated data files in a separate commit that can be reverted for a clean code-only pr? [No]
  • Have I run the linter? [Yes]
  • Is is a bug fix, feature request, or enhancement? [Security]

Summary by CodeRabbit

  • Chores
    • Updated release automation permissions to support publishing and issue management.
    • Standardized repository metadata URL casing.
    • Enabled provenance for published packages to include build attestation.

@TobiTenno TobiTenno requested a review from a team as a code owner October 14, 2025 18:26
@TobiTenno TobiTenno requested a review from AyAyEm October 14, 2025 18:26
@coderabbitai
Copy link

coderabbitai bot commented Oct 14, 2025
edited
Loading

Walkthrough

Updated CI release workflow permissions to include write access for id-token, contents, pull-requests, and issues. In package.json, corrected repository URL casing and added a top-level publishConfig with provenance enabled.

Changes

Cohort / File(s) Summary
CI Workflow Permissions
\.github/workflows/release.yaml		 Added permissions: id-token, contents, pull-requests, issues (write). No step changes; minor whitespace addition.
Package Metadata
package.json		 Updated repository URL to https://github.com/WFCD/arsenal-parser; added "publishConfig": { "provenance": true }.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

Suggested labels

released

Suggested reviewers

  • AyAyEm

Poem

I twitch my whiskers at the tag so bright,
A release hops forth in the moonlit night.
Provenance packed, permissions aligned,
URLs cased—oh, so refined.
Thump-thump goes CI, green lights gleam,
Carrots for all in the shipping stream! 🥕✨

Pre-merge checks and finishing touches

✅ Passed checks (3 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Title Check ✅ Passed The title “fix: provenance & oidc” succinctly captures the core changes of this pull request by referencing both the addition of provenance support in package.json and the OIDC permissions update in the GitHub Actions workflow, without extraneous details or ambiguity.
Docstring Coverage ✅ Passed No functions found in the changes. Docstring coverage check skipped.
✨ Finishing touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch TobiTenno-patch-1

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

coderabbitai[bot]
coderabbitai bot reviewed Oct 14, 2025
View reviewed changes
Copy link

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 0

🧹 Nitpick comments (1)
.github/workflows/release.yaml (1)

44-44: Trim the trailing blank line.

YAMLlint flags Line 44 for an extra blank line. Please drop it to keep the workflow lint-clean.

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 13c71f6 and e519062.

📒 Files selected for processing (2)
  • .github/workflows/release.yaml (2 hunks)
  • package.json (2 hunks)
🧰 Additional context used
🪛 YAMLlint (1.37.1)
.github/workflows/release.yaml

[warning] 44-44: too many blank lines (1 > 0)

(empty-lines)

@TobiTenno TobiTenno enabled auto-merge (squash) October 14, 2025 20:24
@TobiTenno TobiTenno disabled auto-merge October 15, 2025 00:37
@TobiTenno TobiTenno merged commit 80dd5cf into main Oct 15, 2025
9 checks passed
@TobiTenno TobiTenno deleted the TobiTenno-patch-1 branch October 15, 2025 00:37
@wfcd-bot-boi
Copy link
Collaborator

wfcd-bot-boi commented Oct 15, 2025

🎉 This PR is included in version 2.0.5 🎉

The release is available on:

Your semantic-release bot 📦🚀

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

@AyAyEm AyAyEm Awaiting requested review from AyAyEm AyAyEm is a code owner automatically assigned from WFCD/node-libraries

Assignees

No one assigned

Labels

released

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@TobiTenno @wfcd-bot-boi