ci(corepack): pinned the expected dev version of npm and explicitly used it for audit signatures

travi · travi · commit 48c24e4c6b7b · 2024-03-13T22:28:35.000-05:00
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -24,7 +24,7 @@ jobs:
           cache: npm
           node-version: lts/*
       - run: npm clean-install
-      - run: npm audit signatures
+      - run: corepack npm audit signatures
       - run: npx semantic-release
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
@@ -27,6 +27,7 @@ jobs:
           node-version: "${{ matrix.node-version }}"
           cache: npm
       - run: npm clean-install
+      - run: corepack npm audit signatures
       - run: "npm run test:ci"
   test:
     runs-on: ubuntu-latest
@@ -38,7 +39,7 @@ jobs:
           node-version: "lts/*"
           cache: npm
       - run: npm clean-install
-      - run: npm audit signatures
+      - run: corepack npm audit signatures
       - name: Ensure dependencies are compatible with the version of node
         run: npx ls-engines
       - run: npm run lint
diff --git a/package.json b/package.json
@@ -101,5 +101,6 @@
     "extends": [
       "github>semantic-release/.github:renovate-config"
     ]
-  }
+  },
+  "packageManager": "npm@10.5.0+sha256.17ca6e08e7633b624e8f870db81a78f46afe119de62bcaf0a7407574139198fc"
 }

Original file line number	Diff line number	Diff line change
`@@ -101,5 +101,6 @@`
`101`	`101`	`"extends": [`
`102`	`102`	`"github>semantic-release/.github:renovate-config"`
`103`	`103`	`]`
`104`		`- }`
	`104`	`+ },`
	`105`	`+ "packageManager": "[email protected]+sha256.17ca6e08e7633b624e8f870db81a78f46afe119de62bcaf0a7407574139198fc"`
`105`	`106`	`}`