uinaf/gh-release-pipeline

Set up or align a GitHub Actions release pipeline for a versioned package, library, CLI, or marketplace action. Use when standardizing repos around the verify-then-release shape: push to main → guardrails → semantic-release tags + publishes → version-bump commit back to main with [skip ci].

1.55x

Quality

100%

Does it follow best practices?

Impact

98%

1.55x

Average score across 4 eval scenarios

Securityby

Passed

No known issues

Set Up Automated Release Pipeline for npm Library

Name: uinaf/gh-release-pipeline
Rating: 99.4 (1 reviews)
Author: uinaf

Problem/Feature Description

The team at Fieldstone Labs has been maintaining @fieldstone/form-validator, a TypeScript form validation library published to npm. Right now, releases are entirely manual: a developer runs npm version, pushes a tag, and publishes by hand. This process is error-prone — two releases have been accidentally published without the changelog updated, and once a developer pushed to npm from their local machine with stale dependencies.

The team wants to automate this using GitHub Actions and semantic-release, so that every conventional commit pushed to main that warrants a release (feat, fix, or breaking change) automatically: runs the test suite, bumps the version, updates the changelog, publishes to npm, creates a GitHub Release, and commits the version bump back to the repo. They want protection against two releases accidentally racing each other, and they want the version bump commit to never retrigger CI.

Output Specification

Produce the following files in the workspace:

.github/workflows/ci.yml — the complete GitHub Actions workflow with verify and release jobs
.releaserc.json — the semantic-release configuration file

Both files should be ready to commit to the repo root as-is (no placeholders left unfilled). You may create a package.json stub if needed to illustrate the configuration, but it is not required.

Input Files

The following files represent the current state of the repository. Extract them before beginning.

=============== FILE: package.json =============== { "name": "@fieldstone/form-validator", "version": "2.3.1", "description": "TypeScript form validation library", "main": "dist/index.js", "types": "dist/index.d.ts", "scripts": { "build": "tsc", "test": "vitest run", "lint": "eslint src", "typecheck": "tsc --noEmit", "verify": "npm run lint && npm run typecheck && npm run test && npm run build" }, "devDependencies": { "typescript": "^5.4.0", "vitest": "^1.6.0", "eslint": "^8.57.0" } } =============== END FILE ===============

=============== FILE: .nvmrc =============== 20 =============== END FILE ===============