@cloud-copilot/iam-shrink 0.1.38 → 0.1.40

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (4) hide show
  1. package/.github/workflows/pr-checks.yml +2 -16
  2. package/.github/workflows/release.yml +6 -1
  3. package/CHANGELOG.md +4 -0
  4. package/package.json +2 -2
package/.github/workflows/pr-checks.yml CHANGED
@@ -74,7 +74,6 @@ jobs:
74
74
  uses: actions/checkout@v4
75
75
  with:
76
76
  ref: ${{ github.event.pull_request.head.sha }}
77
- fetch-depth: 0
78
77
 
79
78
  - name: Set up Python
80
79
  uses: actions/setup-python@v5
@@ -84,18 +83,5 @@ jobs:
84
83
  - name: Install GuardDog
85
84
  run: pip install guarddog
86
85
 
87
- - name: Run GuardDog scan on src
88
- run: guarddog npm scan src/ --exit-non-zero-on-finding
89
-
90
- - name: Check if package.json changed
91
- id: package_check
92
- run: |
93
- if git diff --name-only ${{ github.event.pull_request.base.sha }}...${{ github.event.pull_request.head.sha }} | grep -q '^package\.json$'; then
94
- echo "changed=true" >> $GITHUB_OUTPUT
95
- else
96
- echo "changed=false" >> $GITHUB_OUTPUT
97
- fi
98
-
99
- - name: Conditionally run verify on package.json
100
- if: steps.package_check.outputs.changed == 'true'
101
- run: guarddog npm verify package.json --exclude-rules empty_information --exit-non-zero-on-finding
86
+ - run: guarddog npm scan src/ --exit-non-zero-on-finding
87
+ # - run: guarddog npm verify package.json --exclude-rules empty_information --output-format sarif --exit-non-zero-on-finding
package/.github/workflows/release.yml CHANGED
@@ -12,6 +12,8 @@ jobs:
12
12
  permissions:
13
13
  contents: write
14
14
  issues: write
15
+ pull-requests: write
16
+ id-token: write
15
17
  steps:
16
18
  - name: Check out
17
19
  uses: actions/checkout@v4
@@ -24,10 +26,13 @@ jobs:
24
26
  - name: Run semantic-release
25
27
  env:
26
28
  GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
27
- NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
28
29
  run: |
30
+ START_VERSION=$(jq -r '.version' package.json)
31
+ npm install -g npm@latest
29
32
  npm ci
30
33
  npm run format-check
31
34
  npm run build
32
35
  npm run test
33
36
  npx semantic-release
37
+ AFTER_VERSION=$(jq -r '.version' package.json)
38
+ [ "$START_VERSION" != "$AFTER_VERSION" ] && npm publish || true
package/CHANGELOG.md CHANGED
@@ -1,3 +1,7 @@
1
+ ## [0.1.40](https://github.com/cloud-copilot/iam-shrink/compare/v0.1.39...v0.1.40) (2025-10-11)
2
+
3
+ ## [0.1.39](https://github.com/cloud-copilot/iam-shrink/compare/v0.1.38...v0.1.39) (2025-10-04)
4
+
1
5
  ## [0.1.38](https://github.com/cloud-copilot/iam-shrink/compare/v0.1.37...v0.1.38) (2025-09-28)
2
6
 
3
7
  ## [0.1.37](https://github.com/cloud-copilot/iam-shrink/compare/v0.1.36...v0.1.37) (2025-09-15)
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@cloud-copilot/iam-shrink",
3
- "version": "0.1.38",
3
+ "version": "0.1.40",
4
4
  "description": "Shrink IAM Policies",
5
5
  "scripts": {
6
6
  "build": "npx tsc -p tsconfig.cjs.json && npx tsc -p tsconfig.esm.json && ./postbuild.sh",
@@ -88,7 +88,7 @@
88
88
  [
89
89
  "@semantic-release/npm",
90
90
  {
91
- "npmPublish": true
91
+ "npmPublish": false
92
92
  }
93
93
  ],
94
94
  [