From 7f874aa3da62cad797275ea8f5b8f7d29652d01c Mon Sep 17 00:00:00 2001 From: mmd-afegbua Date: Mon, 26 Jan 2026 15:31:46 +0100 Subject: [PATCH 1/6] added id-token write permission --- ...d.packages-stable.create-release-drafts.yml | 18 +++++++++++++----- .github/workflows/ci.canary.yml | 5 ++++- .../handler.publish-release-packages.yml | 4 +++- 3 files changed, 20 insertions(+), 7 deletions(-) diff --git a/.github/workflows/cd.packages-stable.create-release-drafts.yml b/.github/workflows/cd.packages-stable.create-release-drafts.yml index 8470903d11..ec37acf6e8 100644 --- a/.github/workflows/cd.packages-stable.create-release-drafts.yml +++ b/.github/workflows/cd.packages-stable.create-release-drafts.yml @@ -19,7 +19,8 @@ jobs: runs-on: ubuntu-22.04 - permissions: write-all + permissions: + contents: write steps: - uses: actions/checkout@v4 @@ -49,7 +50,9 @@ jobs: runs-on: ubuntu-22.04 - permissions: write-all + permissions: + contents: write + steps: - uses: actions/checkout@v4 @@ -89,7 +92,10 @@ jobs: runs-on: ubuntu-22.04 - permissions: write-all + permissions: + contents: write + id-token: write + steps: - uses: actions/checkout@v4 @@ -166,7 +172,8 @@ jobs: check-sdk-core-version, ] - permissions: write-all + permissions: + contents: write steps: - uses: actions/checkout@v4 @@ -193,7 +200,8 @@ jobs: runs-on: ubuntu-22.04 - permissions: write-all + permissions: + contents: write steps: - uses: actions/checkout@v4 diff --git a/.github/workflows/ci.canary.yml b/.github/workflows/ci.canary.yml index 4e6513f095..5c89ed7a57 100644 --- a/.github/workflows/ci.canary.yml +++ b/.github/workflows/ci.canary.yml @@ -176,7 +176,10 @@ jobs: publish-npm-packages: name: Publish canary packages to registries - permissions: write-all + permissions: + contents: read + id-token: write + needs: [all-packages-tested] diff --git a/.github/workflows/handler.publish-release-packages.yml b/.github/workflows/handler.publish-release-packages.yml index f2eaf676da..5081107d83 100644 --- a/.github/workflows/handler.publish-release-packages.yml +++ b/.github/workflows/handler.publish-release-packages.yml @@ -8,7 +8,9 @@ jobs: publish-release: name: Publish release package - permissions: write-all + permissions: + contents: read + id-token: write runs-on: ubuntu-22.04 From bed6f7a0a3f55b8e00895172bb266cf913f7e375 Mon Sep 17 00:00:00 2001 From: mmd-afegbua Date: Mon, 26 Jan 2026 15:35:01 +0100 Subject: [PATCH 2/6] cleanup npmjs token input --- .github/workflows/cd.packages-stable.create-release-drafts.yml | 1 - .github/workflows/ci.canary.yml | 1 - .github/workflows/handler.publish-release-packages.yml | 3 --- 3 files changed, 5 deletions(-) diff --git a/.github/workflows/cd.packages-stable.create-release-drafts.yml b/.github/workflows/cd.packages-stable.create-release-drafts.yml index ec37acf6e8..30ca68c9af 100644 --- a/.github/workflows/cd.packages-stable.create-release-drafts.yml +++ b/.github/workflows/cd.packages-stable.create-release-drafts.yml @@ -127,7 +127,6 @@ jobs: tasks/npm-publish.sh packages/metadata/ latest env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - NPMJS_TOKEN: ${{ secrets.NPMJS_TOKEN }} check-sdk-core-version: name: Checking if SDK-Core should be published diff --git a/.github/workflows/ci.canary.yml b/.github/workflows/ci.canary.yml index 5c89ed7a57..103f4cdee2 100644 --- a/.github/workflows/ci.canary.yml +++ b/.github/workflows/ci.canary.yml @@ -218,7 +218,6 @@ jobs: tasks/npm-publish.sh packages/metadata/ dev --verbose env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - NPMJS_TOKEN: ${{ secrets.NPMJS_TOKEN }} publish-sdk-html-docs: name: Publish canary HTML docs diff --git a/.github/workflows/handler.publish-release-packages.yml b/.github/workflows/handler.publish-release-packages.yml index 5081107d83..7e1a61f7a5 100644 --- a/.github/workflows/handler.publish-release-packages.yml +++ b/.github/workflows/handler.publish-release-packages.yml @@ -52,7 +52,6 @@ jobs: tasks/npm-publish.sh packages/ethereum-contracts/ latest env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - NPMJS_TOKEN: ${{ secrets.NPMJS_TOKEN }} - name: Publish sdk-core package id: publish-sdk-core @@ -74,7 +73,6 @@ jobs: > sdk-core-redirect/index.html env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - NPMJS_TOKEN: ${{ secrets.NPMJS_TOKEN }} - name: Upload sdk-core HTML documentation if: env.PUBLISH_SDK_CORE == 1 @@ -119,7 +117,6 @@ jobs: > sdk-redux-redirect/index.html env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - NPMJS_TOKEN: ${{ secrets.NPMJS_TOKEN }} - name: Upload sdk-redux HTML documentation if: env.PUBLISH_SDK_REDUX == 1 From 2056f2d70d21e969031194832f2365cce0bd4fe3 Mon Sep 17 00:00:00 2001 From: mmd-afegbua Date: Thu, 29 Jan 2026 09:16:53 +0100 Subject: [PATCH 3/6] test workflow --- ... handler.publish-dev-release-packages.yml} | 192 +++++++++++++++++- .../handler.publish-release-packages.yml | 141 ------------- tasks/daily-slack-bot.js | 40 ++-- 3 files changed, 207 insertions(+), 166 deletions(-) rename .github/workflows/{ci.canary.yml => handler.publish-dev-release-packages.yml} (53%) delete mode 100644 .github/workflows/handler.publish-release-packages.yml diff --git a/.github/workflows/ci.canary.yml b/.github/workflows/handler.publish-dev-release-packages.yml similarity index 53% rename from .github/workflows/ci.canary.yml rename to .github/workflows/handler.publish-dev-release-packages.yml index 103f4cdee2..2fc81c1847 100644 --- a/.github/workflows/ci.canary.yml +++ b/.github/workflows/handler.publish-dev-release-packages.yml @@ -1,20 +1,23 @@ -name: CI | Canary (Dev) +name: Publisher & CI on: push: branches: ["dev"] paths: - - ".github/workflows/ci.canary.yml" + - ".github/workflows/handler.publish-dev-release-packages.yml" - ".github/workflows/call.*.yml" - "package.json" - "yarn.lock" - "packages/**" - "codecov.yml" # - "**.md" are commented out because docs updates should go into the packages + release: + types: [published] jobs: check: name: Checking what packages need to be built + if: github.event_name == 'push' runs-on: ubuntu-22.04 @@ -139,7 +142,7 @@ jobs: name: All packages tested (Dev Branch) runs-on: ubuntu-22.04 # https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#example-not-requiring-successful-dependent-jobs - if: ${{ always() }} + if: ${{ always() && github.event_name == 'push' }} needs: [ test-spec-haskell , test-solidity-semantic-money @@ -175,12 +178,12 @@ jobs: publish-npm-packages: name: Publish canary packages to registries + # Only run this if we are in a push event (canary flow) + if: github.event_name == 'push' permissions: contents: read id-token: write - - needs: [all-packages-tested] runs-on: ubuntu-22.04 @@ -221,6 +224,8 @@ jobs: publish-sdk-html-docs: name: Publish canary HTML docs + # Only run this if we are in a push event + if: github.event_name == 'push' needs: [all-packages-tested] @@ -275,3 +280,180 @@ jobs: s3_uri: ${{ format('{0}sdk-redux@dev', secrets.SITE_DEPLOYER_AWS_S3_DOCS_URI) }} cloudfront_distribution_id: E3JEO5R14CT8IH + upgrade-contracts: + name: Upgrade ethereum-contracts on canary testnet (protocol release version "canary") + + if: false # disable this for now + + needs: [all-packages-tested] + + runs-on: ubuntu-22.04 + + strategy: + fail-fast: false + matrix: + network: [optimism-sepolia] + + defaults: + run: + shell: nix develop .#ci-default -c bash -xe {0} + + steps: + - uses: actions/checkout@v4 + + - uses: DeterminateSystems/nix-installer-action@v13 + + - name: Build + run: | + yarn install --frozen-lockfile + yarn build + + - name: Deploy to ${{ matrix.network }} + run: | + cd packages/ethereum-contracts + npx truffle exec --network ${{ matrix.network }} ops-scripts/deploy-test-environment.js + npx truffle exec --network ${{ matrix.network }} ops-scripts/info-print-contract-addresses.js : addresses.vars + tasks/etherscan-verify-framework.sh ${{ matrix.network }} addresses.vars + env: + RELEASE_VERSION: canary + OPTIMISM_SEPOLIA_MNEMONIC: ${{ secrets.BUILD_AGENT_MNEMONIC }} + OPTIMISM_SEPOLIA_PROVIDER_URL: ${{ secrets.OPTIMISM_SEPOLIA_PROVIDER_URL }} + + publish-release: + name: Publish release package + if: github.event_name == 'release' + + permissions: + contents: read + id-token: write + + runs-on: ubuntu-22.04 + + defaults: + run: + shell: nix develop .#ci-default -c bash -xe {0} + + steps: + - uses: actions/checkout@v4 + + - uses: actions/checkout@v4 + with: + repository: superfluid-finance/build-scripts + path: build-scripts + + - uses: DeterminateSystems/nix-installer-action@v13 + + - name: Parse Tag + env: + GITHUB_REF: ${{ github.ref }} + run: | + if echo -n "$GITHUB_REF" | grep -qE "refs/tags/ethereum-contracts@";then + echo "PUBLISH_ETHEREUM_CONTRACTS=1" >> "$GITHUB_ENV" + fi + if echo -n "$GITHUB_REF" | grep -qE "refs/tags/sdk-core@";then + echo "PUBLISH_SDK_CORE=1" >> "$GITHUB_ENV" + fi + if echo -n "$GITHUB_REF" | grep -qE "refs/tags/sdk-redux@";then + echo "PUBLISH_SDK_REDUX=1" >> "$GITHUB_ENV" + fi + + - name: Install dependencies + run: yarn install --frozen-lockfile + + - name: Publish ethereum-contracts package + if: env.PUBLISH_ETHEREUM_CONTRACTS == 1 + run: | + yarn --cwd packages/ethereum-contracts build + tasks/npm-publish.sh packages/ethereum-contracts/ latest + env: + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + NPMJS_TOKEN: ${{ secrets.NPMJS_TOKEN }} + + - name: Publish sdk-core package + id: publish-sdk-core + if: env.PUBLISH_SDK_CORE == 1 + run: | + yarn --cwd packages/sdk-core get-graphql-schema:v1 + yarn --cwd packages/ethereum-contracts build + yarn --cwd packages/sdk-core build + tasks/npm-publish.sh packages/sdk-core/ latest + + PUBLISHED_VERSION=$(jq -r .version packages/sdk-core/package.json) + + echo "PUBLISHED_VERSION=$PUBLISHED_VERSION" >> "$GITHUB_OUTPUT" + + # Build documentation with redirect from root + yarn --cwd packages/sdk-core doc:html + mkdir sdk-core-redirect + printf 'Redirecting...

Redirecting to latest documentation...

' "https://refs.superfluid.finance/sdk-core@$PUBLISHED_VERSION" \ + > sdk-core-redirect/index.html + env: + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + NPMJS_TOKEN: ${{ secrets.NPMJS_TOKEN }} + + - name: Upload sdk-core HTML documentation + if: env.PUBLISH_SDK_CORE == 1 + uses: ./build-scripts/s3cloudfront-hosting/actions/sync + with: + local_build_dir: packages/sdk-core/dist/docs + aws_region: eu-west-2 + aws_access_key_id: ${{ secrets.SITE_DEPLOYER_AWS_ACCESS_KEY_ID }} + aws_secret_access_key: ${{ secrets.SITE_DEPLOYER_AWS_SECRET_ACCESS_KEY }} + s3_uri: ${{ format('{0}sdk-core@{1}', secrets.SITE_DEPLOYER_AWS_S3_DOCS_URI, steps.publish-sdk-core.outputs.PUBLISHED_VERSION) }} + cloudfront_distribution_id: E3JEO5R14CT8IH + + - name: Upload sdk-core latest documentation redirect + if: env.PUBLISH_SDK_CORE == 1 + uses: ./build-scripts/s3cloudfront-hosting/actions/sync + with: + local_build_dir: sdk-core-redirect + aws_region: eu-west-2 + aws_access_key_id: ${{ secrets.SITE_DEPLOYER_AWS_ACCESS_KEY_ID }} + aws_secret_access_key: ${{ secrets.SITE_DEPLOYER_AWS_SECRET_ACCESS_KEY }} + s3_uri: ${{ format('{0}sdk-core', secrets.SITE_DEPLOYER_AWS_S3_DOCS_URI) }} + cloudfront_distribution_id: E3JEO5R14CT8IH + + - name: Publish sdk-redux package + id: publish-sdk-redux + if: env.PUBLISH_SDK_REDUX == 1 + run: | + yarn --cwd packages/ethereum-contracts build + yarn --cwd packages/sdk-core get-graphql-schema:v1 + yarn --cwd packages/sdk-core build + yarn --cwd packages/sdk-redux build + tasks/npm-publish.sh packages/sdk-redux/ latest + + PUBLISHED_VERSION=$(jq -r .version packages/sdk-redux/package.json) + + echo "PUBLISHED_VERSION=$PUBLISHED_VERSION" >> "$GITHUB_OUTPUT" + + # Build documentation with redirect from root + yarn --cwd packages/sdk-redux doc:html + mkdir sdk-redux-redirect + printf 'Redirecting...

Redirecting to latest documentation...

' "https://refs.superfluid.finance/sdk-redux@$PUBLISHED_VERSION" \ + > sdk-redux-redirect/index.html + env: + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + NPMJS_TOKEN: ${{ secrets.NPMJS_TOKEN }} + + - name: Upload sdk-redux HTML documentation + if: env.PUBLISH_SDK_REDUX == 1 + uses: ./build-scripts/s3cloudfront-hosting/actions/sync + with: + local_build_dir: packages/sdk-redux/dist/docs + aws_region: eu-west-2 + aws_access_key_id: ${{ secrets.SITE_DEPLOYER_AWS_ACCESS_KEY_ID }} + aws_secret_access_key: ${{ secrets.SITE_DEPLOYER_AWS_SECRET_ACCESS_KEY }} + s3_uri: ${{ format('{0}sdk-redux@{1}', secrets.SITE_DEPLOYER_AWS_S3_DOCS_URI, steps.publish-sdk-redux.outputs.PUBLISHED_VERSION) }} + cloudfront_distribution_id: E3JEO5R14CT8IH + + - name: Upload sdk-redux latest documentation redirect + if: env.PUBLISH_SDK_REDUX == 1 + uses: ./build-scripts/s3cloudfront-hosting/actions/sync + with: + local_build_dir: sdk-redux-redirect + aws_region: eu-west-2 + aws_access_key_id: ${{ secrets.SITE_DEPLOYER_AWS_ACCESS_KEY_ID }} + aws_secret_access_key: ${{ secrets.SITE_DEPLOYER_AWS_SECRET_ACCESS_KEY }} + s3_uri: ${{ format('{0}sdk-redux', secrets.SITE_DEPLOYER_AWS_S3_DOCS_URI) }} + cloudfront_distribution_id: E3JEO5R14CT8IH diff --git a/.github/workflows/handler.publish-release-packages.yml b/.github/workflows/handler.publish-release-packages.yml deleted file mode 100644 index 7e1a61f7a5..0000000000 --- a/.github/workflows/handler.publish-release-packages.yml +++ /dev/null @@ -1,141 +0,0 @@ -name: Publish Release Package - -on: - release: - types: [published] - -jobs: - publish-release: - name: Publish release package - - permissions: - contents: read - id-token: write - - runs-on: ubuntu-22.04 - - defaults: - run: - shell: nix develop .#ci-default -c bash -xe {0} - - steps: - - uses: actions/checkout@v4 - - - uses: actions/checkout@v4 - with: - repository: superfluid-finance/build-scripts - path: build-scripts - - - uses: DeterminateSystems/nix-installer-action@v13 - - - name: Parse Tag - env: - GITHUB_REF: ${{ github.ref }} - run: | - if echo -n "$GITHUB_REF" | grep -qE "refs/tags/ethereum-contracts@";then - echo "PUBLISH_ETHEREUM_CONTRACTS=1" >> "$GITHUB_ENV" - fi - if echo -n "$GITHUB_REF" | grep -qE "refs/tags/sdk-core@";then - echo "PUBLISH_SDK_CORE=1" >> "$GITHUB_ENV" - fi - if echo -n "$GITHUB_REF" | grep -qE "refs/tags/sdk-redux@";then - echo "PUBLISH_SDK_REDUX=1" >> "$GITHUB_ENV" - fi - - - name: Install dependencies - run: yarn install --frozen-lockfile - - - name: Publish ethereum-contracts package - if: env.PUBLISH_ETHEREUM_CONTRACTS == 1 - run: | - yarn --cwd packages/ethereum-contracts build - tasks/npm-publish.sh packages/ethereum-contracts/ latest - env: - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - - - name: Publish sdk-core package - id: publish-sdk-core - if: env.PUBLISH_SDK_CORE == 1 - run: | - yarn --cwd packages/sdk-core get-graphql-schema:v1 - yarn --cwd packages/ethereum-contracts build - yarn --cwd packages/sdk-core build - tasks/npm-publish.sh packages/sdk-core/ latest - - PUBLISHED_VERSION=$(jq -r .version packages/sdk-core/package.json) - - echo "PUBLISHED_VERSION=$PUBLISHED_VERSION" >> "$GITHUB_OUTPUT" - - # Build documentation with redirect from root - yarn --cwd packages/sdk-core doc:html - mkdir sdk-core-redirect - printf 'Redirecting...

Redirecting to latest documentation...

' "https://refs.superfluid.finance/sdk-core@$PUBLISHED_VERSION" \ - > sdk-core-redirect/index.html - env: - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - - - name: Upload sdk-core HTML documentation - if: env.PUBLISH_SDK_CORE == 1 - uses: ./build-scripts/s3cloudfront-hosting/actions/sync - with: - local_build_dir: packages/sdk-core/dist/docs - aws_region: eu-west-2 - aws_access_key_id: ${{ secrets.SITE_DEPLOYER_AWS_ACCESS_KEY_ID }} - aws_secret_access_key: ${{ secrets.SITE_DEPLOYER_AWS_SECRET_ACCESS_KEY }} - s3_uri: ${{ format('{0}sdk-core@{1}', secrets.SITE_DEPLOYER_AWS_S3_DOCS_URI, steps.publish-sdk-core.outputs.PUBLISHED_VERSION) }} - cloudfront_distribution_id: E3JEO5R14CT8IH - - - name: Upload sdk-core latest documentation redirect - if: env.PUBLISH_SDK_CORE == 1 - uses: ./build-scripts/s3cloudfront-hosting/actions/sync - with: - local_build_dir: sdk-core-redirect - aws_region: eu-west-2 - aws_access_key_id: ${{ secrets.SITE_DEPLOYER_AWS_ACCESS_KEY_ID }} - aws_secret_access_key: ${{ secrets.SITE_DEPLOYER_AWS_SECRET_ACCESS_KEY }} - s3_uri: ${{ format('{0}sdk-core', secrets.SITE_DEPLOYER_AWS_S3_DOCS_URI) }} - cloudfront_distribution_id: E3JEO5R14CT8IH - - - name: Publish sdk-redux package - id: publish-sdk-redux - if: env.PUBLISH_SDK_REDUX == 1 - run: | - yarn --cwd packages/ethereum-contracts build - yarn --cwd packages/sdk-core get-graphql-schema:v1 - yarn --cwd packages/sdk-core build - yarn --cwd packages/sdk-redux build - tasks/npm-publish.sh packages/sdk-redux/ latest - - PUBLISHED_VERSION=$(jq -r .version packages/sdk-redux/package.json) - - echo "PUBLISHED_VERSION=$PUBLISHED_VERSION" >> "$GITHUB_OUTPUT" - - # Build documentation with redirect from root - yarn --cwd packages/sdk-redux doc:html - mkdir sdk-redux-redirect - printf 'Redirecting...

Redirecting to latest documentation...

' "https://refs.superfluid.finance/sdk-redux@$PUBLISHED_VERSION" \ - > sdk-redux-redirect/index.html - env: - GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - - - name: Upload sdk-redux HTML documentation - if: env.PUBLISH_SDK_REDUX == 1 - uses: ./build-scripts/s3cloudfront-hosting/actions/sync - with: - local_build_dir: packages/sdk-redux/dist/docs - aws_region: eu-west-2 - aws_access_key_id: ${{ secrets.SITE_DEPLOYER_AWS_ACCESS_KEY_ID }} - aws_secret_access_key: ${{ secrets.SITE_DEPLOYER_AWS_SECRET_ACCESS_KEY }} - s3_uri: ${{ format('{0}sdk-redux@{1}', secrets.SITE_DEPLOYER_AWS_S3_DOCS_URI, steps.publish-sdk-redux.outputs.PUBLISHED_VERSION) }} - cloudfront_distribution_id: E3JEO5R14CT8IH - - - name: Upload sdk-redux latest documentation redirect - if: env.PUBLISH_SDK_REDUX == 1 - uses: ./build-scripts/s3cloudfront-hosting/actions/sync - with: - local_build_dir: sdk-redux-redirect - aws_region: eu-west-2 - aws_access_key_id: ${{ secrets.SITE_DEPLOYER_AWS_ACCESS_KEY_ID }} - aws_secret_access_key: ${{ secrets.SITE_DEPLOYER_AWS_SECRET_ACCESS_KEY }} - s3_uri: ${{ format('{0}sdk-redux', secrets.SITE_DEPLOYER_AWS_S3_DOCS_URI) }} - cloudfront_distribution_id: E3JEO5R14CT8IH diff --git a/tasks/daily-slack-bot.js b/tasks/daily-slack-bot.js index 9584d24530..0695688d23 100644 --- a/tasks/daily-slack-bot.js +++ b/tasks/daily-slack-bot.js @@ -17,7 +17,7 @@ const sadPepeKidImage = "https://www.pngmart.com/files/11/Sad-Pepe-The-Frog-PNG-Transparent-Picture.png"; const topSectionMessage = "Looks like there are some lonely pull requests open in your area"; -const workflowFileName = ".github/workflows/ci.canary.yml"; +const workflowFileName = ".github/workflows/handler.publish-dev-release-packages.yml"; const metadataLink = "https://raw.githubusercontent.com/superfluid-finance/protocol-monorepo/dev/packages/metadata/networks.json"; const redImage = @@ -1620,8 +1620,8 @@ async function checkIndividualContractVerification( const lastWorkflowId = lastWorkflow.id; const lastWorkflowUsage = await getDataAsJson( "https://api.github.com/repos/superfluid-finance/protocol-monorepo/actions/runs/" + - lastWorkflowId + - "/timing", + lastWorkflowId + + "/timing", ); const workflowStatus = lastWorkflow.status; @@ -1642,8 +1642,8 @@ async function checkIndividualContractVerification( async function getPrOldestCommit(prJson) { let allCommits = await getDataAsJson( "https://api.github.com/repos/superfluid-finance/protocol-monorepo/pulls/" + - prJson.number + - "/commits", + prJson.number + + "/commits", ); return allCommits[allCommits.length - 1]; } @@ -1835,14 +1835,14 @@ async function checkIndividualContractVerification( addSectionWithImage( webhookPayload, "Please have a look at: *<" + - oldestDraftPRUrl + - "|" + - oldestDraftPRTitle + - ">*\nColumbus would have went to America " + - americaTrips + - " times already by this time ,do something with this as this has been open for *" + - lastDraftPrUpdateBeforeDays + - "* days", + oldestDraftPRUrl + + "|" + + oldestDraftPRTitle + + ">*\nColumbus would have went to America " + + americaTrips + + " times already by this time ,do something with this as this has been open for *" + + lastDraftPrUpdateBeforeDays + + "* days", redWarningIcon, "It took them 36 days", ); @@ -1867,10 +1867,10 @@ async function checkIndividualContractVerification( } else { let draftMessage = oldestDraftPR ? "There are no open PRs????? *<" + - allPullRequests + - "|" + - amountOfDraftPRs + - " pull requests are in draft , you might want to look into those>*" + allPullRequests + + "|" + + amountOfDraftPRs + + " pull requests are in draft , you might want to look into those>*" : "There are no open and draft PRs? What is this, why u no work, you might want to read this:\n**"; addSectionWithImage( webhookPayload, @@ -1901,9 +1901,9 @@ async function checkIndividualContractVerification( addContextWithImage( webhookPayload, "*The PR has been last updated before " + - lastUpdatedBeforeDays + - " days*\nLast commit: " + - oldestPRMessage, + lastUpdatedBeforeDays + + " days*\nLast commit: " + + oldestPRMessage, imageToAddToContext, imageText, ); From bca74cfea74e168d9d63eea2a983dde105e021f1 Mon Sep 17 00:00:00 2001 From: mmd-afegbua Date: Fri, 30 Jan 2026 17:11:47 +0100 Subject: [PATCH 4/6] package repo url updates --- .../handler.publish-dev-release-packages.yml | 50 ++++++++++++++----- package.json | 4 +- packages/ethereum-contracts/package.json | 4 +- packages/hot-fuzz/package.json | 6 +-- packages/js-sdk/package.json | 4 +- packages/metadata/package.json | 6 +-- packages/sdk-core/package.json | 6 +-- packages/sdk-redux/package.json | 4 +- packages/solidity-semantic-money/package.json | 6 +-- packages/subgraph/package.json | 4 +- tasks/npm-publish.sh | 5 +- tasks/npmrc-use-npmjs.sh | 6 ++- 12 files changed, 65 insertions(+), 40 deletions(-) diff --git a/.github/workflows/handler.publish-dev-release-packages.yml b/.github/workflows/handler.publish-dev-release-packages.yml index 2fc81c1847..5d152c6e3c 100644 --- a/.github/workflows/handler.publish-dev-release-packages.yml +++ b/.github/workflows/handler.publish-dev-release-packages.yml @@ -2,7 +2,7 @@ name: Publisher & CI on: push: - branches: ["dev"] + branches: ["dev", "workflow-consolidation"] paths: - ".github/workflows/handler.publish-dev-release-packages.yml" - ".github/workflows/call.*.yml" @@ -195,6 +195,11 @@ jobs: steps: - uses: actions/checkout@v4 + - uses: actions/setup-node@v4 + with: + node-version: '24' + registry-url: 'https://registry.npmjs.org' + - uses: DeterminateSystems/nix-installer-action@v13 - name: Install dependencies @@ -214,6 +219,7 @@ jobs: yarn lerna version prerelease --yes --no-git-tag-version --preid "${preId}" - name: Publish to npm + shell: bash run: | tasks/npm-publish.sh packages/ethereum-contracts/ dev --verbose tasks/npm-publish.sh packages/sdk-core/ dev --verbose @@ -360,36 +366,48 @@ jobs: - name: Install dependencies run: yarn install --frozen-lockfile - - name: Publish ethereum-contracts package + - name: Build ethereum-contracts package if: env.PUBLISH_ETHEREUM_CONTRACTS == 1 run: | yarn --cwd packages/ethereum-contracts build + env: + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + + - name: Publish ethereum-contracts package + if: env.PUBLISH_ETHEREUM_CONTRACTS == 1 + shell: bash + run: | tasks/npm-publish.sh packages/ethereum-contracts/ latest env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - NPMJS_TOKEN: ${{ secrets.NPMJS_TOKEN }} - - name: Publish sdk-core package - id: publish-sdk-core + - name: Build sdk-core package if: env.PUBLISH_SDK_CORE == 1 run: | yarn --cwd packages/sdk-core get-graphql-schema:v1 yarn --cwd packages/ethereum-contracts build yarn --cwd packages/sdk-core build + yarn --cwd packages/sdk-core doc:html + env: + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + + - name: Publish sdk-core package + id: publish-sdk-core + if: env.PUBLISH_SDK_CORE == 1 + shell: bash + run: | tasks/npm-publish.sh packages/sdk-core/ latest PUBLISHED_VERSION=$(jq -r .version packages/sdk-core/package.json) echo "PUBLISHED_VERSION=$PUBLISHED_VERSION" >> "$GITHUB_OUTPUT" - # Build documentation with redirect from root - yarn --cwd packages/sdk-core doc:html + # Create redirect from root mkdir sdk-core-redirect printf 'Redirecting...

Redirecting to latest documentation...

' "https://refs.superfluid.finance/sdk-core@$PUBLISHED_VERSION" \ > sdk-core-redirect/index.html env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - NPMJS_TOKEN: ${{ secrets.NPMJS_TOKEN }} - name: Upload sdk-core HTML documentation if: env.PUBLISH_SDK_CORE == 1 @@ -413,28 +431,34 @@ jobs: s3_uri: ${{ format('{0}sdk-core', secrets.SITE_DEPLOYER_AWS_S3_DOCS_URI) }} cloudfront_distribution_id: E3JEO5R14CT8IH - - name: Publish sdk-redux package - id: publish-sdk-redux + - name: Build sdk-redux package if: env.PUBLISH_SDK_REDUX == 1 run: | yarn --cwd packages/ethereum-contracts build yarn --cwd packages/sdk-core get-graphql-schema:v1 yarn --cwd packages/sdk-core build yarn --cwd packages/sdk-redux build + yarn --cwd packages/sdk-redux doc:html + env: + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} + + - name: Publish sdk-redux package + id: publish-sdk-redux + if: env.PUBLISH_SDK_REDUX == 1 + shell: bash + run: | tasks/npm-publish.sh packages/sdk-redux/ latest PUBLISHED_VERSION=$(jq -r .version packages/sdk-redux/package.json) echo "PUBLISHED_VERSION=$PUBLISHED_VERSION" >> "$GITHUB_OUTPUT" - # Build documentation with redirect from root - yarn --cwd packages/sdk-redux doc:html + # Create redirect from root mkdir sdk-redux-redirect printf 'Redirecting...

Redirecting to latest documentation...

' "https://refs.superfluid.finance/sdk-redux@$PUBLISHED_VERSION" \ > sdk-redux-redirect/index.html env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - NPMJS_TOKEN: ${{ secrets.NPMJS_TOKEN }} - name: Upload sdk-redux HTML documentation if: env.PUBLISH_SDK_REDUX == 1 diff --git a/package.json b/package.json index bfce3199d1..a9b94faf1c 100644 --- a/package.json +++ b/package.json @@ -1,5 +1,5 @@ { - "name": "@superfluid-finance/protocol-monorepo", + "name": "@superfluid-org/protocol-monorepo", "description": "Superfluid Protocol monorepo", "version": "0.0.0", "devDependencies": { @@ -46,7 +46,7 @@ "license": "MIT", "npmClient": "yarn", "private": true, - "repository": "github:superfluid-finance/protocol-monorepo", + "repository": "github:superfluid-org/protocol-monorepo", "resolutions": { "cross-fetch": "^4.0.0" }, diff --git a/packages/ethereum-contracts/package.json b/packages/ethereum-contracts/package.json index b64a462ca1..ec1d9f2d5c 100644 --- a/packages/ethereum-contracts/package.json +++ b/packages/ethereum-contracts/package.json @@ -45,7 +45,7 @@ "dev-scripts/**/*", "utils/**/*" ], - "homepage": "https://github.com/superfluid-finance/protocol-monorepo/tree/dev/packages/ethereum-contracts#readme", + "homepage": "https://github.com/superfluid-org/protocol-monorepo/tree/dev/packages/ethereum-contracts#readme", "license": "AGPL-3.0-or-later OR MIT", "main": "./dev-scripts/index.js", "peerDependencies": { @@ -54,7 +54,7 @@ }, "repository": { "type": "git", - "url": "https://github.com/superfluid-finance/protocol-monorepo.git", + "url": "https://github.com/superfluid-org/protocol-monorepo.git", "directory": "packages/ethereum-contracts" }, "scripts": { diff --git a/packages/hot-fuzz/package.json b/packages/hot-fuzz/package.json index 856acbc889..3eefce7888 100644 --- a/packages/hot-fuzz/package.json +++ b/packages/hot-fuzz/package.json @@ -5,11 +5,11 @@ "bin": { "hot-fuzz": "./hot-fuzz" }, - "bugs": "https://github.com/superfluid-finance/protocol-monorepo/issues", + "bugs": "https://github.com/superfluid-org/protocol-monorepo/issues", "devDependencies": { "@superfluid-finance/ethereum-contracts": "^1.14.1" }, - "homepage": "https://github.com/superfluid-finance/protocol-monorepo#readme", + "homepage": "https://github.com/superfluid-org/protocol-monorepo#readme", "license": "AGPL-3.0", "main": "index.js", "peerDependencies": { @@ -17,7 +17,7 @@ }, "repository": { "type": "git", - "url": "https://github.com/superfluid-finance/protocol-monorepo.git", + "url": "https://github.com/superfluid-org/protocol-monorepo.git", "directory": "packages/hot-fuzz" }, "scripts": { diff --git a/packages/js-sdk/package.json b/packages/js-sdk/package.json index 486a0d3daf..217d5c8145 100644 --- a/packages/js-sdk/package.json +++ b/packages/js-sdk/package.json @@ -26,12 +26,12 @@ "src/**/*.js", "dist/index.js" ], - "homepage": "https://github.com/superfluid-finance/protocol-monorepo/tree/dev/packages/js-sdk#readme", + "homepage": "https://github.com/superfluid-org/protocol-monorepo/tree/dev/packages/js-sdk#readme", "license": "MIT", "main": "src/index.js", "repository": { "type": "git", - "url": "https://github.com/superfluid-finance/protocol-monorepo.git", + "url": "https://github.com/superfluid-org/protocol-monorepo.git", "directory": "packages/js-sdk" }, "scripts": { diff --git a/packages/metadata/package.json b/packages/metadata/package.json index f42b31fe0f..30fd74d06b 100644 --- a/packages/metadata/package.json +++ b/packages/metadata/package.json @@ -3,14 +3,14 @@ "description": "Superfluid Metadata", "version": "1.6.2", "author": "Superfluid", - "bugs": "https://github.com/superfluid-finance/protocol-monorepo/issues", - "homepage": "https://github.com/superfluid-finance/protocol-monorepo/tree/dev/packages/metadata#readme", + "bugs": "https://github.com/superfluid-org/protocol-monorepo/issues", + "homepage": "https://github.com/superfluid-org/protocol-monorepo/tree/dev/packages/metadata#readme", "license": "MIT", "main": "main/index.cjs", "module": "module/index.js", "repository": { "type": "git", - "url": "https://github.com/superfluid-finance/protocol-monorepo.git", + "url": "https://github.com/superfluid-org/protocol-monorepo.git", "directory": "packages/metadata" }, "scripts": { diff --git a/packages/sdk-core/package.json b/packages/sdk-core/package.json index ff97ccbe43..37dcb8a057 100644 --- a/packages/sdk-core/package.json +++ b/packages/sdk-core/package.json @@ -2,7 +2,7 @@ "name": "@superfluid-finance/sdk-core", "description": "SDK Core for building with Superfluid Protocol", "version": "0.9.0", - "bugs": "https://github.com/superfluid-finance/protocol-monorepo/issues", + "bugs": "https://github.com/superfluid-org/protocol-monorepo/issues", "dependencies": { "@superfluid-finance/ethereum-contracts": "1.14.1", "@superfluid-finance/metadata": "^1.6.2", @@ -31,7 +31,7 @@ "LICENSE", "README.md" ], - "homepage": "https://github.com/superfluid-finance/protocol-monorepo/tree/dev/packages/sdk-core#readme", + "homepage": "https://github.com/superfluid-org/protocol-monorepo/tree/dev/packages/sdk-core#readme", "license": "MIT", "main": "dist/main/index.js", "module": "dist/module/index.js", @@ -41,7 +41,7 @@ }, "repository": { "type": "git", - "url": "https://github.com/superfluid-finance/protocol-monorepo.git", + "url": "https://github.com/superfluid-org/protocol-monorepo.git", "directory": "packages/sdk-core" }, "scripts": { diff --git a/packages/sdk-redux/package.json b/packages/sdk-redux/package.json index fac415acf7..90a536dd2d 100644 --- a/packages/sdk-redux/package.json +++ b/packages/sdk-redux/package.json @@ -2,7 +2,7 @@ "name": "@superfluid-finance/sdk-redux", "description": "SDK Redux for streamlined front-end application development with Superfluid Protocol", "version": "0.7.0", - "bugs": "https://github.com/superfluid-finance/protocol-monorepo/issues", + "bugs": "https://github.com/superfluid-org/protocol-monorepo/issues", "config": { "commitizen": { "path": "cz-conventional-changelog" @@ -44,7 +44,7 @@ }, "repository": { "type": "git", - "url": "https://github.com/superfluid-finance/protocol-monorepo.git", + "url": "https://github.com/superfluid-org/protocol-monorepo.git", "directory": "packages/sdk-redux" }, "scripts": { diff --git a/packages/solidity-semantic-money/package.json b/packages/solidity-semantic-money/package.json index e7298a9834..416e6c2e8f 100644 --- a/packages/solidity-semantic-money/package.json +++ b/packages/solidity-semantic-money/package.json @@ -2,12 +2,12 @@ "name": "@superfluid-finance/solidity-semantic-money", "description": "Semantic money implementation in solidity.", "version": "0.1.0", - "bugs": "https://github.com/superfluid-finance/protocol-monorepo/issues", + "bugs": "https://github.com/superfluid-org/protocol-monorepo/issues", "directories": { "src": "src", "test": "test" }, - "homepage": "https://github.com/superfluid-finance/protocol-monorepo#readme", + "homepage": "https://github.com/superfluid-org/protocol-monorepo#readme", "keywords": [ "money", "finance", @@ -18,7 +18,7 @@ "main": "index.js", "repository": { "type": "git", - "url": "https://github.com/superfluid-finance/protocol-monorepo.git", + "url": "https://github.com/superfluid-org/protocol-monorepo.git", "directory": "packages/solidity-semantic-money" }, "scripts": { diff --git a/packages/subgraph/package.json b/packages/subgraph/package.json index 029971843f..af4332cf44 100644 --- a/packages/subgraph/package.json +++ b/packages/subgraph/package.json @@ -16,11 +16,11 @@ "lodash": "^4.17.23", "matchstick-as": "^0.6.0" }, - "homepage": "https://github.com/superfluid-finance/protocol-monorepo/tree/dev/packages/subgraph", + "homepage": "https://github.com/superfluid-org/protocol-monorepo/tree/dev/packages/subgraph", "license": "MIT", "repository": { "type": "git", - "url": "https://github.com/superfluid-finance/protocol-monorepo.git", + "url": "https://github.com/superfluid-org/protocol-monorepo.git", "directory": "packages/subgraph" }, "scripts": { diff --git a/tasks/npm-publish.sh b/tasks/npm-publish.sh index b0046a5cce..8d0e672e63 100755 --- a/tasks/npm-publish.sh +++ b/tasks/npm-publish.sh @@ -2,8 +2,6 @@ set -xe -D="$(dirname "$0")" - pwd PACKAGE_DIR="$1" @@ -11,5 +9,4 @@ TAG="$2" shift 2 echo "Publishing ${PACKAGE_DIR} @${TAG} to NPMJS registry" -"$D"/npmrc-use-npmjs.sh > .npmrc -npm publish --access public --tag "${TAG}" "${PACKAGE_DIR}" "$@" +npm publish --provenance --access public --tag "${TAG}" "${PACKAGE_DIR}" "$@" diff --git a/tasks/npmrc-use-npmjs.sh b/tasks/npmrc-use-npmjs.sh index a48784d4fc..7f87449451 100755 --- a/tasks/npmrc-use-npmjs.sh +++ b/tasks/npmrc-use-npmjs.sh @@ -1,3 +1,7 @@ cat <> .npmrc +fi From 445186b0501903ee9914bd379d4855c9bd641f6b Mon Sep 17 00:00:00 2001 From: mmd-afegbua Date: Mon, 2 Feb 2026 16:56:13 +0100 Subject: [PATCH 5/6] remove old publish workflow --- tasks/daily-slack-bot.js | 38 +++++++++++++++++++------------------- 1 file changed, 19 insertions(+), 19 deletions(-) diff --git a/tasks/daily-slack-bot.js b/tasks/daily-slack-bot.js index 0695688d23..a78a010e56 100644 --- a/tasks/daily-slack-bot.js +++ b/tasks/daily-slack-bot.js @@ -1620,8 +1620,8 @@ async function checkIndividualContractVerification( const lastWorkflowId = lastWorkflow.id; const lastWorkflowUsage = await getDataAsJson( "https://api.github.com/repos/superfluid-finance/protocol-monorepo/actions/runs/" + - lastWorkflowId + - "/timing", + lastWorkflowId + + "/timing", ); const workflowStatus = lastWorkflow.status; @@ -1642,8 +1642,8 @@ async function checkIndividualContractVerification( async function getPrOldestCommit(prJson) { let allCommits = await getDataAsJson( "https://api.github.com/repos/superfluid-finance/protocol-monorepo/pulls/" + - prJson.number + - "/commits", + prJson.number + + "/commits", ); return allCommits[allCommits.length - 1]; } @@ -1835,14 +1835,14 @@ async function checkIndividualContractVerification( addSectionWithImage( webhookPayload, "Please have a look at: *<" + - oldestDraftPRUrl + - "|" + - oldestDraftPRTitle + - ">*\nColumbus would have went to America " + - americaTrips + - " times already by this time ,do something with this as this has been open for *" + - lastDraftPrUpdateBeforeDays + - "* days", + oldestDraftPRUrl + + "|" + + oldestDraftPRTitle + + ">*\nColumbus would have went to America " + + americaTrips + + " times already by this time ,do something with this as this has been open for *" + + lastDraftPrUpdateBeforeDays + + "* days", redWarningIcon, "It took them 36 days", ); @@ -1867,10 +1867,10 @@ async function checkIndividualContractVerification( } else { let draftMessage = oldestDraftPR ? "There are no open PRs????? *<" + - allPullRequests + - "|" + - amountOfDraftPRs + - " pull requests are in draft , you might want to look into those>*" + allPullRequests + + "|" + + amountOfDraftPRs + + " pull requests are in draft , you might want to look into those>*" : "There are no open and draft PRs? What is this, why u no work, you might want to read this:\n**"; addSectionWithImage( webhookPayload, @@ -1901,9 +1901,9 @@ async function checkIndividualContractVerification( addContextWithImage( webhookPayload, "*The PR has been last updated before " + - lastUpdatedBeforeDays + - " days*\nLast commit: " + - oldestPRMessage, + lastUpdatedBeforeDays + + " days*\nLast commit: " + + oldestPRMessage, imageToAddToContext, imageText, ); From 665d91516c83df0c448b893798fcc92e7efc7ca1 Mon Sep 17 00:00:00 2001 From: mmd-afegbua Date: Mon, 2 Feb 2026 17:13:09 +0100 Subject: [PATCH 6/6] removed test trigger branch --- .github/workflows/handler.publish-dev-release-packages.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/handler.publish-dev-release-packages.yml b/.github/workflows/handler.publish-dev-release-packages.yml index 5d152c6e3c..f5201bc8d2 100644 --- a/.github/workflows/handler.publish-dev-release-packages.yml +++ b/.github/workflows/handler.publish-dev-release-packages.yml @@ -2,7 +2,7 @@ name: Publisher & CI on: push: - branches: ["dev", "workflow-consolidation"] + branches: ["dev"] paths: - ".github/workflows/handler.publish-dev-release-packages.yml" - ".github/workflows/call.*.yml"