Spaces:
Sleeping
Sleeping
| name: Publish to npm | |
| on: | |
| release: | |
| types: [published] | |
| workflow_dispatch: | |
| inputs: | |
| packages: | |
| description: "Packages to publish (comma-separated: agentmemory,mcp,fs-watcher)" | |
| required: false | |
| default: "agentmemory,mcp,fs-watcher" | |
| # Workflow-level permissions stay minimal — only `contents: read` | |
| # is required to check out the repo. `id-token: write` is granted on | |
| # the publish job for npm's --provenance Sigstore OIDC mint. | |
| permissions: | |
| contents: read | |
| jobs: | |
| publish: | |
| runs-on: ubuntu-latest | |
| permissions: | |
| contents: read | |
| id-token: write | |
| steps: | |
| - uses: actions/checkout@v6 | |
| with: | |
| # Don't persist the GITHUB_TOKEN to .git/config — the | |
| # publish steps don't push back to the repo, so the token | |
| # only needs to live in memory for this checkout. | |
| persist-credentials: false | |
| - uses: actions/setup-node@v6 | |
| with: | |
| node-version: 22 | |
| registry-url: https://registry.npmjs.org | |
| # Two-step install: generate a lockfile in-runner with | |
| # --package-lock-only, then install from it with `npm ci`. Gives a | |
| # single deterministic dep graph across build / test / publish | |
| # within one job — important because publish uses `--provenance`. | |
| # Lockfiles are gitignored at the repo level. | |
| - run: npm install --package-lock-only --legacy-peer-deps --no-audit --no-fund | |
| - run: npm ci --legacy-peer-deps --no-audit --no-fund | |
| - run: npm run build | |
| - run: npm test | |
| - name: Publish @agentmemory/agentmemory | |
| run: | | |
| if npm view "@agentmemory/agentmemory@$(node -p "require('./package.json').version")" version >/dev/null 2>&1; then | |
| echo "Version already published, skipping" | |
| else | |
| npm publish --provenance --access public | |
| fi | |
| env: | |
| NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} | |
| - name: Wait for npm registry propagation | |
| run: | | |
| VERSION=$(node -p "require('./package.json').version") | |
| for i in $(seq 1 24); do | |
| if npm view "@agentmemory/agentmemory@$VERSION" version >/dev/null 2>&1; then | |
| echo "Registry propagated after ${i} attempt(s)" | |
| exit 0 | |
| fi | |
| echo "Attempt $i: not yet available, sleeping 5s..." | |
| sleep 5 | |
| done | |
| echo "ERROR: registry never propagated after 2 minutes" >&2 | |
| exit 1 | |
| - name: Publish @agentmemory/mcp shim | |
| working-directory: packages/mcp | |
| run: | | |
| SHIM_VERSION=$(node -p "require('./package.json').version") | |
| if npm view "@agentmemory/mcp@$SHIM_VERSION" version >/dev/null 2>&1; then | |
| echo "Shim version already published, skipping" | |
| else | |
| npm publish --provenance --access public | |
| fi | |
| env: | |
| NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} | |
| - name: Wait for @agentmemory/mcp registry propagation | |
| working-directory: packages/mcp | |
| run: | | |
| SHIM_VERSION=$(node -p "require('./package.json').version") | |
| for i in $(seq 1 24); do | |
| if npm view "@agentmemory/mcp@$SHIM_VERSION" version >/dev/null 2>&1; then | |
| echo "Shim propagated after ${i} attempt(s)" | |
| exit 0 | |
| fi | |
| echo "Attempt $i: not yet available, sleeping 5s..." | |
| sleep 5 | |
| done | |
| echo "ERROR: shim never propagated after 2 minutes" >&2 | |
| exit 1 | |
| - name: Publish @agentmemory/fs-watcher connector | |
| working-directory: integrations/filesystem-watcher | |
| run: | | |
| FSW_VERSION=$(node -p "require('./package.json').version") | |
| if npm view "@agentmemory/fs-watcher@$FSW_VERSION" version >/dev/null 2>&1; then | |
| echo "fs-watcher version already published, skipping" | |
| else | |
| npm publish --provenance --access public | |
| fi | |
| env: | |
| NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }} | |
| - name: Wait for @agentmemory/fs-watcher registry propagation | |
| working-directory: integrations/filesystem-watcher | |
| run: | | |
| FSW_VERSION=$(node -p "require('./package.json').version") | |
| for i in $(seq 1 24); do | |
| if npm view "@agentmemory/fs-watcher@$FSW_VERSION" version >/dev/null 2>&1; then | |
| echo "fs-watcher propagated after ${i} attempt(s)" | |
| exit 0 | |
| fi | |
| echo "Attempt $i: not yet available, sleeping 5s..." | |
| sleep 5 | |
| done | |
| echo "ERROR: fs-watcher never propagated after 2 minutes" >&2 | |
| exit 1 | |