npm - @bobfrankston/npmglobalize - Versions diffs - 1.0.14 → 1.0.18 - Mend

@bobfrankston/npmglobalize 1.0.14 → 1.0.18

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/lib.d.ts CHANGED Viewed

@@ -64,6 +64,7 @@ export declare function hasBackup(pkg: any): boolean;
 export declare function runCommand(cmd: string, args: string[], options?: {
     silent?: boolean;
     cwd?: string;
+    shell?: boolean;
 }): {
     success: boolean;
     output: string;

package/lib.js CHANGED Viewed

@@ -213,13 +213,13 @@ export function hasBackup(pkg) {
 }
 /** Run a command and return success status */
 export function runCommand(cmd, args, options = {}) {
-    const { silent = false, cwd } = options;
+    const { silent = false, cwd, shell = false } = options;
     try {
         const result = spawnSync(cmd, args, {
             encoding: 'utf-8',
             stdio: silent ? 'pipe' : 'inherit',
             cwd,
-            shell: false // Don't use shell to avoid argument parsing issues
+            shell // Use shell when explicitly requested (e.g., for npm publish on Windows)
         });
         // For non-silent commands, we can't capture output when using 'inherit'
         // So we return empty string for output, but the user sees it in the terminal
@@ -993,69 +993,85 @@ export async function globalize(cwd, options = {}) {
     }
     // Publish
     console.log('Publishing to npm...');
-    const npmArgs = ['publish'];
-    if (quiet) {
-        npmArgs.push('--quiet');
-    }
     if (!dryRun) {
-        // Run with silent:true to capture the error message
-        const publishResult = runCommand('npm', npmArgs, { cwd, silent: true });
-        if (!publishResult.success) {
-            console.error(colors.red('\nERROR: npm publish failed\n'));
-            // Combine stdout and stderr for error analysis
-            const errorOutput = (publishResult.output + '\n' + publishResult.stderr).toLowerCase();
-            // Check for specific error types
-            if (errorOutput.includes('e403') && (errorOutput.includes('two-factor') || errorOutput.includes('2fa'))) {
-                console.error(colors.red('⚠ 2FA Required'));
-                console.error('');
-                console.error('Your npm account requires two-factor authentication or a');
-                console.error('granular access token with "bypass 2FA" enabled.');
-                console.error('');
-                console.error(colors.yellow('Your options:'));
-                console.error('');
-                console.error('1. Enable 2FA on your npm account:');
-                console.error(colors.green('   https://www.npmjs.com/settings/[username]/tfa'));
-                console.error('');
-                console.error('2. Create a granular access token:');
-                console.error(colors.green('   https://www.npmjs.com/settings/[username]/tokens'));
-                console.error('   - Select "Granular Access Token"');
-                console.error('   - Set permissions: Read and write');
-                console.error('   - Enable "Bypass 2FA requirement"');
-                console.error('   - Then set via environment variable or .npmrc:');
-                console.error(colors.green('     $env:NPM_TOKEN="npm_xxx..."'));
-                console.error('   Or add to ~/.npmrc:');
-                console.error(colors.green('     //registry.npmjs.org/:_authToken=npm_xxx...'));
-                console.error('');
+        // Create tarball first
+        const packResult = runCommand('npm', ['pack'], { cwd, silent: true, shell: true });
+        if (!packResult.success) {
+            console.error(colors.red('ERROR: Failed to create package tarball'));
+            if (packResult.stderr)
+                console.error(packResult.stderr);
+            return false;
+        }
+        // Get the tarball filename from npm pack output
+        const tarballName = packResult.output.trim().split('\n').pop()?.trim();
+        if (!tarballName) {
+            console.error(colors.red('ERROR: Could not determine tarball filename'));
+            return false;
+        }
+        const tarballPath = path.join(cwd, tarballName);
+        if (verbose) {
+            console.log(`Created tarball: ${tarballName}`);
+        }
+        // Publish the tarball
+        const npmArgs = ['publish', tarballName];
+        if (npmVisibility === 'public') {
+            npmArgs.push('--access', 'public');
+        }
+        if (quiet) {
+            npmArgs.push('--quiet');
+        }
+        // Retry logic for E409 conflicts (publishing too fast)
+        const maxRetries = 12; // 12 attempts * 5 seconds = 60 seconds total
+        const retryDelay = 5; // 5 seconds between attempts
+        let publishResult;
+        let attempt = 0;
+        while (attempt < maxRetries) {
+            if (attempt > 0) {
+                console.log(colors.yellow(`⏱ Waiting ${retryDelay} seconds before retry (attempt ${attempt + 1}/${maxRetries})...`));
+                await new Promise(resolve => setTimeout(resolve, retryDelay * 1000));
             }
-            else if (errorOutput.includes('e404') || errorOutput.includes('not found')) {
-                console.error(colors.yellow('Package not found or access denied.'));
-                console.error('');
-                console.error('Possible causes:');
-                console.error('  • Package name is not available');
-                console.error('  • You don\'t have permission to publish to this package');
-                console.error('  • Scope (@username/) requires organization access');
-                console.error('');
+            publishResult = runCommand('npm', npmArgs, { cwd, silent: true, shell: true });
+            if (publishResult.success) {
+                break; // Success!
+            }
+            // Check if it's an E409 error
+            const output = (publishResult.output + '\n' + publishResult.stderr).toLowerCase();
+            const isE409 = output.includes('e409') || output.includes('409 conflict');
+            if (!isE409) {
+                break; // Not an E409, don't retry
+            }
+            if (attempt === 0) {
+                console.log(colors.yellow('⚠ npm is still processing the previous version, retrying...'));
+            }
+            attempt++;
+        }
+        // Clean up tarball
+        try {
+            fs.unlinkSync(tarballPath);
+            if (verbose) {
+                console.log(`Cleaned up tarball: ${tarballName}`);
             }
-            else if (errorOutput.includes('e402') || errorOutput.includes('payment required')) {
-                console.error(colors.yellow('Payment required for private packages.'));
+        }
+        catch (e) {
+            // Ignore cleanup errors
+        }
+        if (!publishResult.success) {
+            console.error(colors.red('\nERROR: npm publish failed\n'));
+            // Check for E409 conflict (publishing too fast)
+            const output = (publishResult.output + '\n' + publishResult.stderr).toLowerCase();
+            if (output.includes('e409') || output.includes('409 conflict')) {
+                console.error(colors.yellow('⚠ Publishing too quickly'));
                 console.error('');
-                console.error('Private scoped packages require a paid npm account.');
-                console.error('Either upgrade your account or make the package public.');
+                console.error('npm is still processing the previous version after multiple retries.');
+                console.error(colors.green('Solution: Wait a few more minutes and try again'));
                 console.error('');
             }
             else {
-                // Show the actual error output
-                if (publishResult.stderr) {
-                    console.error(publishResult.stderr);
-                }
-                if (publishResult.output) {
-                    console.error(publishResult.output);
-                }
-                console.error('');
                 console.error(colors.yellow('Common causes:'));
                 console.error(colors.yellow('  1. Not logged in - run: npm login'));
                 console.error(colors.yellow('  2. Version already published'));
                 console.error(colors.yellow('  3. Authentication token expired'));
+                console.error('');
             }
             if (transformed) {
                 console.log('Run --cleanup to restore file: dependencies');

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@bobfrankston/npmglobalize",
-  "version": "1.0.14",
+  "version": "1.0.18",
   "description": "Transform file: dependencies to npm versions for publishing",
   "main": "index.js",
   "type": "module",