Skip to content

Commit ffde625

Browse files
hamdymohamedakhamdymohamedak
committed
chore: supply-chain metadata, npm publish workflow, and trim repo layout
Add GitHub security policy stub, OIDC-friendly publish workflow, publishConfig and expanded npm keywords; point homepage at org docs. Remove duplicate nested openFetch tree, docs site, demo app, and skill bundle from this repository (keep single-package root layout). Made-with: Cursor
1 parent 77b2c29 commit ffde625

239 files changed

Lines changed: 77 additions & 17752 deletions

File tree

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

.github/SECURITY.md

Lines changed: 12 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,12 @@
1+
# Security policy
2+
3+
The full threat model, SSRF/cache/retry guidance, and local security checks live in [`SECURITY.md`](../SECURITY.md) at the repository root (also shipped on npm).
4+
5+
## Reporting a vulnerability
6+
7+
Please do **not** open a public issue for undisclosed security defects.
8+
9+
- Prefer a [GitHub private security advisory](https://github.com/openfetch-js/OpenFetch/security/advisories/new) for this repository, or
10+
- Contact the maintainer privately if you cannot use GitHub advisories.
11+
12+
Include enough detail to reproduce or reason about impact. We aim to acknowledge valid reports and coordinate disclosure after a fix is available.

.github/workflows/publish.yml

Lines changed: 34 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,34 @@
1+
# Publishes to npm using trusted publishing (OIDC). On npmjs.com, trusted publisher must
2+
# reference this repo: https://github.com/openfetch-js/OpenFetch and workflow file: publish.yml
3+
# Requires: npm CLI >= 11.5.1, Node >= 22.14 (see https://docs.npmjs.com/trusted-publishers )
4+
name: Publish to npm
5+
6+
on:
7+
push:
8+
tags:
9+
- 'v*'
10+
11+
permissions:
12+
contents: read
13+
id-token: write
14+
15+
jobs:
16+
publish:
17+
runs-on: ubuntu-latest
18+
steps:
19+
- uses: actions/checkout@v4
20+
21+
- uses: actions/setup-node@v4
22+
with:
23+
node-version: '22'
24+
registry-url: 'https://registry.npmjs.org'
25+
26+
- name: Upgrade npm for trusted publishing
27+
run: npm install -g npm@^11.5.1
28+
29+
- run: npm ci
30+
- run: npm test
31+
32+
# No NODE_AUTH_TOKEN: authentication is OIDC when trusted publishing is enabled.
33+
# Provenance is generated automatically for trusted publishing from GitHub Actions.
34+
- run: npm publish

frontEnd/openfetch/.gitignore

Lines changed: 0 additions & 24 deletions
This file was deleted.

frontEnd/openfetch/README.md

Lines changed: 0 additions & 18 deletions
This file was deleted.

frontEnd/openfetch/eslint.config.js

Lines changed: 0 additions & 29 deletions
This file was deleted.

frontEnd/openfetch/index.html

Lines changed: 0 additions & 13 deletions
This file was deleted.

0 commit comments

Comments
 (0)