release.yml

# This workflow will release a package at npmjs and at GitHub releases

name: Release

on:
  push:
    tags:
      - v*

jobs:
  npm:
    runs-on: ubuntu-latest
    permissions:
      contents: read
      id-token: write
    steps:
    - uses: actions/checkout@v4
    - uses: actions/setup-node@v4
      with:
        node-version: 20.x
        registry-url: https://registry.npmjs.org
    - name: Install and build
      run: |
        npm ci
        npm run build
    - name: Publish to npm
      run: npm publish --provenance --access=public
      env:
        NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
  github:
    runs-on: ubuntu-latest
    steps:
    - uses: actions/checkout@v4
    - uses: actions/setup-node@v4
      with:
        node-version: 20.x
    - name: Install, build, and pack
      run: |
        npm ci
        npm run build
        npm pack
    - run: |
        echo "ARTIFACT_NAME=$(ls jskos-validate-*.tgz)" >> $GITHUB_ENV
    - name: Create GitHub release
      uses: softprops/action-gh-release@v2
      with:
        name: jskos-validate ${{ github.ref_name }}
        body: TODO
        draft: true
        prerelease: false
        files: ${{ env.ARTIFACT_NAME }}