styleproof 4.4.9 → 4.4.11
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +19 -0
- package/dist/map-store.js +9 -1
- package/package.json +1 -1
package/CHANGELOG.md
CHANGED
|
@@ -7,6 +7,25 @@ this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.htm
|
|
|
7
7
|
|
|
8
8
|
## [Unreleased]
|
|
9
9
|
|
|
10
|
+
## [4.4.11] - 2026-07-13
|
|
11
|
+
|
|
12
|
+
### Fixed
|
|
13
|
+
|
|
14
|
+
- **Map-store pushes now receive workflow authentication directly.** The final
|
|
15
|
+
`git push` uses the same explicit reset-and-token arguments as the isolated
|
|
16
|
+
clone, so temporary sparse-checkout config cannot drop the Actions token after
|
|
17
|
+
a successful cold-cache capture.
|
|
18
|
+
|
|
19
|
+
## [4.4.10] - 2026-07-13
|
|
20
|
+
|
|
21
|
+
### Fixed
|
|
22
|
+
|
|
23
|
+
- **Explicit workflow authentication no longer duplicates the checkout header.**
|
|
24
|
+
StyleProof clears any inherited GitHub HTTP authorization value before adding
|
|
25
|
+
`STYLEPROOF_MAP_STORE_TOKEN`, preventing GitHub from rejecting cold-cache
|
|
26
|
+
clones with `Duplicate header: "Authorization"` while retaining explicit-token
|
|
27
|
+
precedence over stale checkout credentials.
|
|
28
|
+
|
|
10
29
|
## [4.4.8] - 2026-07-13
|
|
11
30
|
|
|
12
31
|
### Fixed
|
package/dist/map-store.js
CHANGED
|
@@ -67,6 +67,10 @@ function effectiveGitHttpExtraHeaders(cwd) {
|
|
|
67
67
|
const mapStoreToken = process.env.STYLEPROOF_MAP_STORE_TOKEN;
|
|
68
68
|
if (mapStoreToken) {
|
|
69
69
|
return [
|
|
70
|
+
{
|
|
71
|
+
key: ['http.https:', '', 'github.com', '.extraheader'].join('/'),
|
|
72
|
+
value: '',
|
|
73
|
+
},
|
|
70
74
|
{
|
|
71
75
|
key: ['http.https:', '', 'github.com', '.extraheader'].join('/'),
|
|
72
76
|
value: `AUTHORIZATION: basic ${Buffer.from(`x-access-token:${mapStoreToken}`).toString('base64')}`,
|
|
@@ -491,6 +495,10 @@ export function publishMapBundle(options) {
|
|
|
491
495
|
const sha = safeSegment(manifest.sha, 'sha');
|
|
492
496
|
const compatibilityKey = safeSegment(manifest.compatibilityKey, 'compatibility key');
|
|
493
497
|
const target = `${sha}/${compatibilityKey}`;
|
|
498
|
+
const pushAuthenticationArguments = effectiveGitHttpExtraHeaders(cwd).flatMap(({ key, value }) => [
|
|
499
|
+
'-c',
|
|
500
|
+
`${key}=${value}`,
|
|
501
|
+
]);
|
|
494
502
|
let ok = false;
|
|
495
503
|
let lastError = '';
|
|
496
504
|
for (let attempt = 1; attempt <= 5; attempt++) {
|
|
@@ -506,7 +514,7 @@ export function publishMapBundle(options) {
|
|
|
506
514
|
}
|
|
507
515
|
runGit(tmp, ['add', '-A', '--sparse', '--', 'README.md', target]);
|
|
508
516
|
runGit(tmp, ['commit', '-q', '-m', `StyleProof map ${sha.slice(0, 12)} ${compatibilityKey}`], 1 << 20);
|
|
509
|
-
const push = runGit(tmp, ['push', '-q', 'origin', `HEAD:${branch}`], 1 << 20);
|
|
517
|
+
const push = runGit(tmp, [...pushAuthenticationArguments, 'push', '-q', 'origin', `HEAD:${branch}`], 1 << 20);
|
|
510
518
|
if (push.status === 0) {
|
|
511
519
|
ok = true;
|
|
512
520
|
break;
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "styleproof",
|
|
3
|
-
"version": "4.4.
|
|
3
|
+
"version": "4.4.11",
|
|
4
4
|
"description": "Catch every CSS change before it ships — review PRs and certify refactors by the browser's computed styles, not pixels. Works with any styling system.",
|
|
5
5
|
"keywords": [
|
|
6
6
|
"playwright",
|