Skip to content

ci: configure npm trusted publishing with provenance#7061

Draft
serhalp wants to merge 9 commits into
mainfrom
claude/slack-session-78quP
Draft

ci: configure npm trusted publishing with provenance#7061
serhalp wants to merge 9 commits into
mainfrom
claude/slack-session-78quP

Merge branch 'main' into claude/slack-session-78quP

b12382c
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / CodeQL succeeded Jun 30, 2026 in 5s

1 new alert including 1 medium severity security vulnerability

New alerts in code changed by this pull request

Security Alerts:

  • 1 medium

See annotations below for details.

View all branch alerts.

Annotations

Check warning on line 22 in .github/workflows/pre-release.yml

See this annotation in the file changed.

Code scanning / CodeQL

Workflow does not contain permissions Medium

Actions job or workflow does not limit the permissions of the GITHUB_TOKEN. Consider setting an explicit permissions block, using the following as a minimal starting point: {contents: read}