pubm 0.0.0-alpha.14 → 0.0.0-alpha.16

package/README.md

@@ -10,24 +10,65 @@ pubm
 publish manager for multiple registry (jsr, npm and private registries)
 <p>
 
-## Why
+## Features
 
-- Customize with plugin
+- Publish package to npm and jsr at once
+- Customize (Soon)
   - GitHub release draft format
-  - Adjust tasks (Add, Remove, Sorting)
+  - Adjust tasks (Add, Remove, Sorting tasks)
 
-It is designed to be easy to managing publish to multiple registry.
+## Prerequisites
+
+- Node.js 18 or later
+- npm 9 or later
+- Git 2.11 or later
+
+## Install
+
+```bash
+npm i -g pubm
+```
 
 ## Usage
 
 ```bash
-pubm [version]
+Usage:
+  $ pubm [version]
+
+  Version can be:
+    major | premajor | minor | preminor | patch | prepatch | prerelease | 1.2.3
+
+Options:
+  --test-script <script>      The npm script to run tests before publishing (default: test)
+  --build-script <script>     The npm script to run build before publishing (default: build)
+  -p, --preview               Show tasks without actually executing publish 
+  -b, --branch <name>         Name of the release branch (default: main)
+  -a, --any-branch            Show tasks without actually executing publish 
+  --no-pre-check              Skip prerequisites check task (default: true)
+  --no-condition-check        Skip required conditions check task (default: true)
+  --no-cleanup                Skip cleaning the `node_modules` directory (default: true)
+  --no-tests                  Skip running tests before publishing (default: true)
+  --no-build                  Skip build before publishing (default: true)
+  --no-publish                Skip publishing task (default: true)
+  --no-release-draft          Skip creating a GitHub release draft (default: true)
+  -y, --yolo                  Skip both cleanup and tests 
+  -t, --tag <name>            Publish under a specific dist-tag (default: latest)
+  --package-manager <name>    Use a specific package manager 'packageManager' field in package.json or package manager configuration file 
+  -c, --contents <path>       Subdirectory to publish 
+  -h, --help                  Display this message 
+  -v, --version               Display version number
+  --registry <...registries>  Target registries for publish
+        registry can be npm | jsr | https://url.for.private-registries (default: npm,jsr)
 ```
 
-## Config file for publish
+## Config for publish
 
 You can have either package.json or jsr.json.
 
+### Configuration file (Soon)
+
+`pubm.js` or `pubm.mjs`
+
 
 ## Tasks
 
@@ -36,35 +77,35 @@ You can have either package.json or jsr.json.
 pubm tasks
 </summary>
 
-- Notify new version ✅
-- Checking required information ✅
-  - Select SemVer increment or specify new version ✅
-  - Select the tag for this pre-release version in npm: (if version is prerelease) ✅
-    - checking for the existence of either package.json or jsr.json ✅
-- Prerequisite checks = skip-pre (for deployment reliability) ✅
-  - Checking if remote history is clean... ✅
-  - Checking if the local working tree is clean... ✅
-  - Checking if commits exist since the last release... ✅
-  - Verifying current branch is a release branch... ✅
-  - Checking git tag existence... ✅
-- Required conditions checks (concurrently) = skip-required (for pubm tasks) ✅
-  - Verifying if npm CLI and jsr CLI are installed... ✅
-  - Ping registries... ✅
-  - Checking if test and build scripts exist... ✅
-  - Checking git version... ✅
-  - Checking available registries for publishing... ✅
-    - in jsr permission check token exist and ask token ✅
-    - if first time -> Checking package name availability... ✅
-    - if scoped package and scope reserved contact message ✅
-- Running tests... ✅
-- Building the project... ✅
-- Bumping version... ✅
-- Publishing... (concurrently) ✅
-  - npm ✅
-      - Running npm publish... ✅
-      - Verifying two-factor authentication... ✅
-  - jsr ✅
-      - Running jsr publish... ✅
+- Notify new version
+- Checking required information
+  - Select SemVer increment or specify new version
+  - Select the tag for this pre-release version in npm: (if version is prerelease)
+    - checking for the existence of either package.json or jsr.json
+- Prerequisite checks = skip-pre (for deployment reliability)
+  - Checking if remote history is clean...
+  - Checking if the local working tree is clean...
+  - Checking if commits exist since the last release...
+  - Verifying current branch is a release branch...
+  - Checking git tag existence...
+- Required conditions checks (concurrently) = skip-required (for pubm tasks)
+  - Verifying if npm CLI and jsr CLI are installed...
+  - Ping registries...
+  - Checking if test and build scripts exist...
+  - Checking git version...
+  - Checking available registries for publishing...
+    - in jsr permission check token exist and ask token
+    - if first time -> Checking package name availability...
+    - if scoped package and scope reserved contact message
+- Running tests...
+- Building the project...
+- Bumping version...
+- Publishing... (concurrently)
+  - npm
+      - Running npm publish...
+      - Verifying two-factor authentication...
+  - jsr
+      - Running jsr publish...
 - Pushing tags to GitHub...
 - Creating release draft on GitHub...
 </details>
@@ -103,3 +144,15 @@ np tasks
 - Push tags
 - Release draft
 </details>
+
+## FAQ
+
+### Why is jsr only asking for tokens?
+
+The only way to access the certified environment for jsr is to request api directly with token.
+
+### How is jsr token saved? Is it safe?
+
+jsr token is encrypted and stored through various pieces of information, and unless you have complete control of the local computer that ran pubm, I think it is difficult for token to be taken over.
+
+If desired, the --no-save-token option allows you to run tokens without saving them.

package/bin/cli.js

@@ -718,7 +718,7 @@ var JsrRegisry = class extends Registry {
     try {
       await exec2(
         "jsr",
-        ["publish", "--allow-dirty", "--token", `${this.client.token}`],
+        ["publish", "--allow-dirty", "--token", `${JsrClient.token}`],
         {
           throwOnError: true
         }
@@ -754,14 +754,9 @@ var JsrRegisry = class extends Registry {
     return isValidPackageName(this.packageName);
   }
 };
-var JsrClient = class {
-  constructor(apiEndpoint, token) {
+var _JsrClient = class _JsrClient {
+  constructor(apiEndpoint) {
     this.apiEndpoint = apiEndpoint;
-    this.token = token;
-    if (!this.token) {
-      const token2 = new Db().get("jsr-token");
-      if (token2) this.token = token2;
-    }
   }
   async fetch(endpoint, init) {
     const pubmVersion = await version({ cwd: import.meta.dirname });
@@ -769,7 +764,7 @@ var JsrClient = class {
       ...init,
       headers: {
         ...init?.headers,
-        Authorization: `Bearer ${this.token}`,
+        Authorization: `Bearer ${_JsrClient.token}`,
         "User-Agent": `pubm/${pubmVersion}; https://github.com/syi0808/pubm`
       }
     });
@@ -904,6 +899,8 @@ var JsrClient = class {
     }
   }
 };
+__publicField(_JsrClient, "token", new Db().get("jsr-token"));
+var JsrClient = _JsrClient;
 async function jsrRegistry() {
   const jsrJson = await getJsrJson();
   return new JsrRegisry(jsrJson.name);
@@ -1063,14 +1060,14 @@ var jsrAvailableCheckTasks = {
         await jsr.client.deleteScope(`${getScope(jsr.packageName)}`);
       }
     }, ctx);
-    if (!jsr.client.token) {
+    if (!JsrClient.token) {
       task.output = "Retrieving jsr API token";
       while (true) {
-        jsr.client.token = await task.prompt(ListrEnquirerPromptAdapter).run({
+        JsrClient.token = await task.prompt(ListrEnquirerPromptAdapter).run({
           type: "password",
           message: `Please enter the jsr ${color3.bold("API token")}`,
           footer: `
-Generate a token from ${color3.bold(link("jsr.io", "https://jsr.io/account/tokens/create"))}. ${color3.red("You should select")} ${color3.bold("'Interact with the JSR API'")}.`
+Generate a token from ${color3.bold(link("jsr.io", "https://jsr.io/account/tokens/create/"))}. ${color3.red("You should select")} ${color3.bold("'Interact with the JSR API'")}.`
         });
         try {
           if (await jsr.client.user()) break;
@@ -1078,7 +1075,7 @@ Generate a token from ${color3.bold(link("jsr.io", "https://jsr.io/account/token
         } catch {
         }
       }
-      new Db().set("jsr-token", jsr.client.token);
+      if (ctx.saveToken) new Db().set("jsr-token", JsrClient.token);
     }
     if (!isScopedPackage(jsr.packageName)) {
       let jsrName = new Db().get(jsr.packageName);
@@ -1937,9 +1934,14 @@ var options = [
     description: "Subdirectory to publish",
     options: { type: String }
   },
+  {
+    rawName: "--no-save-token",
+    description: "Do not save jsr tokens (requested for every run)",
+    options: { type: Boolean }
+  },
   {
     rawName: "--registry <...registries>",
-    description: "Target registries for publish\nregistry can be npm | jsr | https://url.for.private-registries",
+    description: "Target registries for publish\n        registry can be npm | jsr | https://url.for.private-registries\n",
     options: { type: String, default: "npm,jsr" }
   }
 ];

package/dist/index.cjs

@@ -748,7 +748,7 @@ var JsrRegisry = class extends Registry {
     try {
       await (0, import_tinyexec2.exec)(
         "jsr",
-        ["publish", "--allow-dirty", "--token", `${this.client.token}`],
+        ["publish", "--allow-dirty", "--token", `${JsrClient.token}`],
         {
           throwOnError: true
         }
@@ -784,14 +784,9 @@ var JsrRegisry = class extends Registry {
     return isValidPackageName(this.packageName);
   }
 };
-var JsrClient = class {
-  constructor(apiEndpoint, token) {
+var _JsrClient = class _JsrClient {
+  constructor(apiEndpoint) {
     this.apiEndpoint = apiEndpoint;
-    this.token = token;
-    if (!this.token) {
-      const token2 = new Db().get("jsr-token");
-      if (token2) this.token = token2;
-    }
   }
   async fetch(endpoint, init) {
     const pubmVersion = await version({ cwd: import_meta2.dirname });
@@ -799,7 +794,7 @@ var JsrClient = class {
       ...init,
       headers: {
         ...init?.headers,
-        Authorization: `Bearer ${this.token}`,
+        Authorization: `Bearer ${_JsrClient.token}`,
         "User-Agent": `pubm/${pubmVersion}; https://github.com/syi0808/pubm`
       }
     });
@@ -934,6 +929,8 @@ var JsrClient = class {
     }
   }
 };
+__publicField(_JsrClient, "token", new Db().get("jsr-token"));
+var JsrClient = _JsrClient;
 async function jsrRegistry() {
   const jsrJson = await getJsrJson();
   return new JsrRegisry(jsrJson.name);
@@ -1093,14 +1090,14 @@ var jsrAvailableCheckTasks = {
         await jsr.client.deleteScope(`${getScope(jsr.packageName)}`);
       }
     }, ctx);
-    if (!jsr.client.token) {
+    if (!JsrClient.token) {
       task.output = "Retrieving jsr API token";
       while (true) {
-        jsr.client.token = await task.prompt(import_prompt_adapter_enquirer.ListrEnquirerPromptAdapter).run({
+        JsrClient.token = await task.prompt(import_prompt_adapter_enquirer.ListrEnquirerPromptAdapter).run({
           type: "password",
           message: `Please enter the jsr ${import_listr24.color.bold("API token")}`,
           footer: `
-Generate a token from ${import_listr24.color.bold(link("jsr.io", "https://jsr.io/account/tokens/create"))}. ${import_listr24.color.red("You should select")} ${import_listr24.color.bold("'Interact with the JSR API'")}.`
+Generate a token from ${import_listr24.color.bold(link("jsr.io", "https://jsr.io/account/tokens/create/"))}. ${import_listr24.color.red("You should select")} ${import_listr24.color.bold("'Interact with the JSR API'")}.`
         });
         try {
           if (await jsr.client.user()) break;
@@ -1108,7 +1105,7 @@ Generate a token from ${import_listr24.color.bold(link("jsr.io", "https://jsr.io
         } catch {
         }
       }
-      new Db().set("jsr-token", jsr.client.token);
+      if (ctx.saveToken) new Db().set("jsr-token", JsrClient.token);
     }
     if (!isScopedPackage(jsr.packageName)) {
       let jsrName = new Db().get(jsr.packageName);

package/dist/index.d.cts

@@ -83,6 +83,11 @@ interface Options {
      * @description Subdirectory to publish
      */
     contents?: string;
+    /**
+     * @description Do not save jsr tokens (requested for every run)
+     * @default true
+     */
+    saveToken?: boolean;
     /**
      * @description Target registries for publish
      * @default ['npm', 'jsr']

package/dist/index.d.ts

@@ -83,6 +83,11 @@ interface Options {
      * @description Subdirectory to publish
      */
     contents?: string;
+    /**
+     * @description Do not save jsr tokens (requested for every run)
+     * @default true
+     */
+    saveToken?: boolean;
     /**
      * @description Target registries for publish
      * @default ['npm', 'jsr']

package/dist/index.js

@@ -712,7 +712,7 @@ var JsrRegisry = class extends Registry {
     try {
       await exec2(
         "jsr",
-        ["publish", "--allow-dirty", "--token", `${this.client.token}`],
+        ["publish", "--allow-dirty", "--token", `${JsrClient.token}`],
         {
           throwOnError: true
         }
@@ -748,14 +748,9 @@ var JsrRegisry = class extends Registry {
     return isValidPackageName(this.packageName);
   }
 };
-var JsrClient = class {
-  constructor(apiEndpoint, token) {
+var _JsrClient = class _JsrClient {
+  constructor(apiEndpoint) {
     this.apiEndpoint = apiEndpoint;
-    this.token = token;
-    if (!this.token) {
-      const token2 = new Db().get("jsr-token");
-      if (token2) this.token = token2;
-    }
   }
   async fetch(endpoint, init) {
     const pubmVersion = await version({ cwd: import.meta.dirname });
@@ -763,7 +758,7 @@ var JsrClient = class {
       ...init,
       headers: {
         ...init?.headers,
-        Authorization: `Bearer ${this.token}`,
+        Authorization: `Bearer ${_JsrClient.token}`,
         "User-Agent": `pubm/${pubmVersion}; https://github.com/syi0808/pubm`
       }
     });
@@ -898,6 +893,8 @@ var JsrClient = class {
     }
   }
 };
+__publicField(_JsrClient, "token", new Db().get("jsr-token"));
+var JsrClient = _JsrClient;
 async function jsrRegistry() {
   const jsrJson = await getJsrJson();
   return new JsrRegisry(jsrJson.name);
@@ -1057,14 +1054,14 @@ var jsrAvailableCheckTasks = {
         await jsr.client.deleteScope(`${getScope(jsr.packageName)}`);
       }
     }, ctx);
-    if (!jsr.client.token) {
+    if (!JsrClient.token) {
       task.output = "Retrieving jsr API token";
       while (true) {
-        jsr.client.token = await task.prompt(ListrEnquirerPromptAdapter).run({
+        JsrClient.token = await task.prompt(ListrEnquirerPromptAdapter).run({
           type: "password",
           message: `Please enter the jsr ${color3.bold("API token")}`,
           footer: `
-Generate a token from ${color3.bold(link("jsr.io", "https://jsr.io/account/tokens/create"))}. ${color3.red("You should select")} ${color3.bold("'Interact with the JSR API'")}.`
+Generate a token from ${color3.bold(link("jsr.io", "https://jsr.io/account/tokens/create/"))}. ${color3.red("You should select")} ${color3.bold("'Interact with the JSR API'")}.`
         });
         try {
           if (await jsr.client.user()) break;
@@ -1072,7 +1069,7 @@ Generate a token from ${color3.bold(link("jsr.io", "https://jsr.io/account/token
         } catch {
         }
       }
-      new Db().set("jsr-token", jsr.client.token);
+      if (ctx.saveToken) new Db().set("jsr-token", JsrClient.token);
     }
     if (!isScopedPackage(jsr.packageName)) {
       let jsrName = new Db().get(jsr.packageName);

package/package.json

@@ -1,6 +1,6 @@
 {
 	"name": "pubm",
-	"version": "0.0.0-alpha.14",
+	"version": "0.0.0-alpha.16",
 	"engines": {
 		"node": ">=18",
 		"git": ">=2.11.0"

package/bin/.pubm/NjcyMGM5OTA3Yzk3MWMyZjEwYTYxOTQwMGZmOWM0ZTA=

@@ -1 +0,0 @@
-2c2abf8d3c256c379227aa11b4fd4fa9135c8a95045eea658710f7f8b9fb142ad31c524b5a440994494d785cd19991a9