f

Author: fengmk2

.github/workflows/npm-release.yml

@@ -70,7 +70,7 @@ jobs:
       # Install action dependencies
       - name: Install action dependencies
         run: npm i --no-package-lock --no-fund --force --omit=dev
-        working-directory: action_repo/scripts/release
+        working-directory: action_repo/scripts/npm-release
 
       # Install dependencies
       - name: Install project dependencies
@@ -83,7 +83,7 @@ jobs:
 
       - name: Semantic Release
         id: release
-        run: node ../action_repo/scripts/release/index.js
+        run: node ../action_repo/scripts/npm-release/index.js
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
           DRYRUN: ${{ inputs.dryRun }}

README.md

@@ -145,18 +145,6 @@ BREAKING CHANGE: Drop Node.js < 18 support
 
 ### 配置方式
 
-- 创建 NPM Token
-  - NPM Registry 需创建 Automation Token，参见[文档](https://docs.npmjs.com/creating-and-viewing-access-tokens)
-  - GitHub Package 无需创建，默认支持
-
-- 创建 GitHub Token
-  - 因为生成的 CHANGELOG.md 和 package.json 需回写 GitHub，而默认的 `GITHUB_TOKEN` 没有该权限
-  - 因此需要创建一个新的 Token，参见[文档](https://docs.github.com/en/github/authenticating-to-github/creating-a-personal-access-token)
-
-- 配置 Token
-  - 在项目或组织维度配置 2 个 `secrets`：`NPM_TOKEN` 和 `GIT_TOKEN`
-  - 参见[文档](https://docs.github.com/en/codespaces/managing-codespaces-for-your-organization/managing-encrypted-secrets-for-your-repository-and-organization-for-github-codespaces)
-
 - 创建 `.github/workflows/release.yml`：
 
 ```yaml
@@ -171,24 +159,14 @@ on:
 jobs:
   release:
     name: Node.js
-    uses: node-modules/github-actions/.github/workflows/node-release.yml@master
-    secrets:
-      NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
-      GIT_TOKEN: ${{ secrets.GIT_TOKEN }}
+    uses: node-modules/github-actions/.github/workflows/npm-release.yml@master
     # with:
       # checkTest: false
       # dryRun: true
 ```
 
 ### 发布到 GitHub Package
 
-修改 `release.yml` 的 secrets：
-
-```yaml
-secrets:
-  NPM_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-```
-
 修改 `package.json`：
 
 ```json

scripts/npm-release/index.js

@@ -0,0 +1,68 @@
+const path = require('path');
+const fs = require('fs');
+const core = require('@actions/core');
+const semanticRelease = require('semantic-release').default;
+const { request } = require('undici');
+
+async function run() {
+  const mainRepoPath = process.cwd();
+  const pkgInfo = require(`${mainRepoPath}/package.json`);
+  const registry = pkgInfo.publishConfig?.registry || 'https://registry.npmjs.org';
+  core.setOutput('name', pkgInfo.name);
+  core.setOutput('registry', registry);
+
+  try {
+    const configFiles = [
+      path.join(__dirname, 'release.config.js'),
+      path.join(mainRepoPath, 'release.config.js'),
+    ].filter(file => fs.existsSync(file));
+
+    core.info(`Using config files: ${configFiles.join(', ')}`);
+
+    const result = await semanticRelease({
+      dryRun: process.env.DRYRUN === 'true',
+      extends: configFiles,
+    });
+
+    const { nextRelease, lastRelease } = result;
+
+    if (!nextRelease) {
+      core.notice('No release need to be published.');
+      core.summary.addRaw('No release need to be published.');
+      await core.summary.write();
+    } else {
+      core.info(`Published release: ${nextRelease.version}`);
+      core.setOutput('release_version', nextRelease.version);
+
+      // cnpm sync
+      try {
+        const res = await request(`https://registry-direct.npmmirror.com/-/package/${pkgInfo.name}/syncs`, {
+          method: 'PUT',
+          timeout: 30000,
+        });
+        const { id } = await res.body.json();
+        const logUrl = `https://registry.npmmirror.com/-/package/${pkgInfo.name}/syncs/${id}/log`;
+        core.setOutput('cnpm_sync_url', logUrl);
+        core.info(`cnpm sync log url: ${logUrl}`);
+
+        // write summary
+        core.summary.addRaw(`## [${pkgInfo.name}](https://github.com/${process.env.GITHUB_REPOSITORY})\n`);
+        core.summary.addRaw(`- Release: ${lastRelease?.version ?? ''} -> ${nextRelease.version}\n`);
+        core.summary.addRaw(`- Registry: ${registry}\n`);
+        core.summary.addRaw(`- CNPM Sync: ${logUrl}\n`);
+        core.summary.addRaw(`- DryRun: ${process.env.DRYRUN}\n`);
+      } catch (err) {
+        core.info(`cnpm sync ${pkgInfo.name} fail, ${err.message}`);
+        core.summary.addRaw(`- CNPM Sync ${pkgInfo.name} error: ${err.message}\n`);
+      }
+      core.summary.addRaw(nextRelease.notes);
+      await core.summary.write();
+    }
+    console.log('Result:', result);
+  } catch (error) {
+    console.error(error);
+    core.setFailed(error);
+  }
+}
+
+run();

scripts/npm-release/package.json

@@ -0,0 +1,21 @@
+{
+  "name": "ci-release",
+  "dependencies": {
+    "@actions/core": "^1.10.0",
+    "@actions/exec": "^1.1.1",
+    "@semantic-release/npm": "13.0.0-alpha.5",
+    "@semantic-release/changelog": "^6.0.3",
+    "@semantic-release/exec": "^7.1.0",
+    "@semantic-release/git": "^10.0.1",
+    "@semantic-release/commit-analyzer": "^13.0.1",
+    "@semantic-release/release-notes-generator": "^14.0.3",
+    "@semantic-release/github": "^11.0.3",
+    "conventional-changelog-conventionalcommits": "^5.0.0",
+    "semantic-release": "25.0.0-alpha.4",
+    "undici": "^5.14.0"
+  },
+  "devDependencies": {
+    "@types/node": "24",
+    "@types/semantic-release": "21"
+  }
+}

scripts/npm-release/release.config.js

@@ -0,0 +1,20 @@
+module.exports = {
+  plugins: [
+    [ '@semantic-release/commit-analyzer', { preset: 'conventionalcommits' } ],
+    [ '@semantic-release/release-notes-generator', { preset: 'conventionalcommits' } ],
+    [ '@semantic-release/changelog', { changelogTitle: '# Changelog' } ],
+    [ '@semantic-release/npm', {} ],
+
+    [ '@semantic-release/git',
+      {
+        message: 'Release <%= nextRelease.version %>\n\n[skip ci]\n\n<%= nextRelease.notes %>',
+      },
+    ],
+
+    [ '@semantic-release/github',
+      {
+        addReleases: 'bottom',
+      },
+    ],
+  ],
+};

scripts/release/index.js

@@ -1,7 +1,7 @@
 const path = require('path');
 const fs = require('fs');
 const core = require('@actions/core');
-const semanticRelease = require('semantic-release').default;
+const semanticRelease = require('semantic-release');
 const { request } = require('undici');
 
 async function run() {

scripts/release/package.json

@@ -3,19 +3,15 @@
   "dependencies": {
     "@actions/core": "^1.10.0",
     "@actions/exec": "^1.1.1",
-    "@semantic-release/npm": "13.0.0-alpha.5",
-    "@semantic-release/changelog": "^6.0.3",
-    "@semantic-release/exec": "^7.1.0",
+    "@semantic-release/changelog": "^6.0.2",
+    "@semantic-release/exec": "^6.0.3",
     "@semantic-release/git": "^10.0.1",
-    "@semantic-release/commit-analyzer": "^13.0.1",
-    "@semantic-release/release-notes-generator": "^14.0.3",
-    "@semantic-release/github": "^11.0.3",
     "conventional-changelog-conventionalcommits": "^5.0.0",
-    "semantic-release": "25.0.0-alpha.4",
+    "semantic-release": "^19.0.5",
     "undici": "^5.14.0"
   },
   "devDependencies": {
-    "@types/node": "24",
-    "@types/semantic-release": "21"
+    "@types/node": "^18.11.15",
+    "@types/semantic-release": "^17.2.4"
   }
 }