How does it handle security and authentication?

The skill enforces the use of NPM_TOKEN via GitHub Secrets and provides .npmrc templates to ensure credentials are never committed to your repository.

Can I use this for TypeScript projects?

Absolutely. It includes specific checks for TypeScript exports, build scripts, and ensuring type definitions are correctly included in the package.

Does it support dry runs before publishing?

Yes, the generated manual workflows include a dry-run option to verify which files will be included in the package before the actual release.

Does this skill handle private npm packages?

Yes, it supports public, scoped public, and private packages with appropriate configuration and publishConfig settings for each.

npm Package Deployment

Name: npm Package Deployment
Author: jrc1883

byjrc1883

배포 및 DevOps

Automates and validates the entire npm package publishing lifecycle, from package.json verification to GitHub Actions CI/CD setup.

소개

The pop-deploy-npm skill streamlines the process of releasing Node.js packages by enforcing industry best practices and security standards. It automatically validates package.json files for required metadata, suggests enhancements for TypeScript support, and generates robust GitHub Actions workflows for automated releases, manual version bumps, or tag-based triggers. By incorporating dry-run support and automated CI gating, it ensures that only high-quality, tested code reaches the npm registry while managing sensitive credentials through secure environment variables.

주요 기능

Automated package.json validation and enhancement
GitHub Actions workflow generation for CI/CD
Dry-run publishing and .npmignore optimization
0 GitHub stars
Semantic versioning (SemVer) management and version bumping
Support for scoped, public, and private registries

사용 사례

Migrating manual npm publishing to a secure GitHub Actions workflow
Ensuring TypeScript packages are correctly bundled and exported for consumers
Setting up a professional release pipeline for a new open-source library

소개

주요 기능

Automated package.json validation and enhancement
GitHub Actions workflow generation for CI/CD
Dry-run publishing and .npmignore optimization
0 GitHub stars
Semantic versioning (SemVer) management and version bumping
Support for scoped, public, and private registries

사용 사례

Migrating manual npm publishing to a secure GitHub Actions workflow
Ensuring TypeScript packages are correctly bundled and exported for consumers
Setting up a professional release pipeline for a new open-source library