Github update dependencies fails with private registry #1006
Comments
|
You can use workflowBootstrapSteps: [{
name: 'npmjs login',
run: 'echo "//registry.npmjs.org/:_authToken=${NPM_TOKEN}" > ~/.npmrc',
env: {
NPM_TOKEN: '${{ secrets.NPM_TOKEN }}',
},
}],It creates file |
|
This issue is now marked as stale because it hasn't seen activity for a while. Add a comment or it will be closed soon. |
|
Closing this issue as it hasn't seen activity for a while. Please add a comment @mentioning a maintainer to reopen. |
mergify bot
pushed a commit
that referenced
this issue
Jan 4, 2023
Fix #1799 #1006 Allow workflow setup steps to be used by extensions of node-project. This change will enable for example a step that sets NPM authentication for private repos before build and publish. --- By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
We have multiple repositories, which have dependencies towards AWS CDK constructs in private npm registries (Github packages, later possibly Cloudsmith).
To access these constructs we thus need NPM_TOKEN exposed, but the update dependencies workflow does not include this, only GITHUB_TOKEN.
This causes the workflow to fail each time and we get an email notification about it. Currently, that includes about 13-14 repositories, and there will be more.
This is kind of related to #815, which also concerns the lack of exposed variables, but a different use case.
The text was updated successfully, but these errors were encountered: