Upgrade to node 24 to enable trusted publishing (#495)

github-actions[bot] · coreymartin · web-flow · commit 6b619a9f1926 · 2026-02-10T12:35:40.000-08:00
* upgrade to node 24 to enable trusted publishing

* wip

---------

Co-authored-by: Corey Martin &lt;coreyn.martin@gmail.com&gt;
diff --git a/.github/workflows/create-release-pr.yaml b/.github/workflows/create-release-pr.yaml
@@ -26,7 +26,7 @@ jobs:
         run: "git branch --track main origin/main"
 
       - name: Setup node
-        uses: "actions/setup-node@v3"
+        uses: "actions/setup-node@v4"
         env:
           SKIP_YARN_COREPACK_CHECK: true
         with:
diff --git a/.github/workflows/docs.yaml b/.github/workflows/docs.yaml
@@ -15,7 +15,7 @@ jobs:
       - name: "Checkout"
         uses: "actions/checkout@v3"
       - name: "Setup Node"
-        uses: "actions/setup-node@v3"
+        uses: "actions/setup-node@v4"
         env:
           SKIP_YARN_COREPACK_CHECK: true
         with:
diff --git a/.github/workflows/test-release-sync.yaml b/.github/workflows/test-release-sync.yaml
@@ -31,7 +31,7 @@ jobs:
           fetch-depth: 2
 
       - name: "Setup Node"
-        uses: "actions/setup-node@v3"
+        uses: "actions/setup-node@v4"
         env:
           SKIP_YARN_COREPACK_CHECK: true
         with:
@@ -77,7 +77,7 @@ jobs:
           ref: ${{ needs.update-lock-file.outputs.VERIFIED_LOCK_COMMIT }}
 
       - name: "Setup Node v${{ matrix.node-version }}"
-        uses: "actions/setup-node@v3"
+        uses: "actions/setup-node@v4"
         env:
           SKIP_YARN_COREPACK_CHECK: true
         with:
@@ -129,7 +129,7 @@ jobs:
           ref: ${{ needs.update-lock-file.outputs.VERIFIED_LOCK_COMMIT }}
 
       - name: "Setup Node v${{ matrix.node-version }}"
-        uses: "actions/setup-node@v3"
+        uses: "actions/setup-node@v4"
         env:
           SKIP_YARN_COREPACK_CHECK: true
         with:
@@ -166,11 +166,13 @@ jobs:
         uses: actions/checkout@v3
 
       - name: "Setup Node"
-        uses: "actions/setup-node@v3"
+        uses: "actions/setup-node@v4"
         env:
           SKIP_YARN_COREPACK_CHECK: true
         with:
-          node-version-file: ".nvmrc"
+          # npm trusted publishing requires node >=22.14.0
+          node-version: "24"
+          registry-url: "https://registry.npmjs.org"
 
       - name: Install dependencies with yarn cache
         uses: ./.github/actions/yarn-nm-install
@@ -185,7 +187,6 @@ jobs:
           publish: yarn release
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-          NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
 
       # If the Version Packages PR has been created in the changesets step we should check if our workspace
       # package.json files have been updated from dependency bumps and update the lock file if so:
