ci(corepack): pinned the expected dev version of npm and explicitly used it for audit signatures

travi · travi · commit cb0c6c4c8616 · 2024-03-15T21:00:33.000-05:00
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -24,7 +24,7 @@ jobs:
           node-version: lts/*
           cache: npm
       - run: npm clean-install
-      - run: npm audit signatures
+      - run: corepack npm audit signatures
       - run: npx semantic-release
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
@@ -41,7 +41,7 @@ jobs:
           node-version: "lts/*"
           cache: npm
       - run: npm clean-install
-      - run: npm audit signatures
+      - run: corepack npm audit signatures
       - name: Ensure dependencies are compatible with the engines range
         run: npx ls-engines
       - run: npm run lint
diff --git a/package.json b/package.json
@@ -97,5 +97,6 @@
     "extends": [
       "github>semantic-release/.github:renovate-config"
     ]
-  }
+  },
+  "packageManager": "npm@10.5.0+sha256.17ca6e08e7633b624e8f870db81a78f46afe119de62bcaf0a7407574139198fc"
 }

Original file line number	Diff line number	Diff line change
`@@ -97,5 +97,6 @@`
`97`	`97`	`"extends": [`
`98`	`98`	`"github>semantic-release/.github:renovate-config"`
`99`	`99`	`]`
`100`		`- }`
	`100`	`+ },`
	`101`	`+ "packageManager": "[email protected]+sha256.17ca6e08e7633b624e8f870db81a78f46afe119de62bcaf0a7407574139198fc"`
`101`	`102`	`}`