npm checkmark
You can get a verified checkmark on your npm package if you build and publish it from GitHub Actions.
In
package.json
, make surerepository.url
is set to your repository’s URL."repository": { "url": "git+https://github.com/dtinth/-.-" }
Update your GitHub Actions workflow job.
- Make sure it has the
id-token: write
permission. - Set environment variable
NPM_CONFIG_PROVENANCE=true
.
jobs: release: name: Release runs-on: ubuntu-latest permissions: id-token: write contents: write packages: write pull-requests: write issues: read env: NPM_CONFIG_PROVENANCE: true
- Make sure it has the