update publish action

RubenHalman · RubenHalman · commit 10e7dcee9ff6 · 2025-11-02T01:22:45.000+01:00
diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
@@ -10,29 +10,9 @@ permissions:
   id-token: write # Required for OIDC (Trusted Publishing)
 
 jobs:
-  build-and-test:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v4
-      - uses: actions/setup-node@v4
-        with:
-          node-version: "20"
-      - name: Update npm
-        run: npm install -g npm@latest # Ensure latest npm for Trusted Publishing
-      - run: npm ci
-      - run: npm test # Your unit tests
-      - run: npm run wdio # Your WDIO CLI E2E tests for runtime behavior/data leaks
-      - name: Snyk Scan
-        uses: snyk/actions/node@master
-        env:
-          SNYK_TOKEN: ${{ secrets.SNYK_TOKEN }} # Store as repo secret (rotate as needed)
-        with:
-          command: test --severity-threshold=high # Block on high-severity/malicious issues
-
   publish:
-    needs: build-and-test # Only publish if tests/scans pass
     runs-on: ubuntu-latest
-    # environment: production  # Uncomment if using GitHub environment for approvals
+    # environment: production  # Uncomment for approval gates
     steps:
       - uses: actions/checkout@v4
       - uses: actions/setup-node@v4
@@ -42,5 +22,5 @@ jobs:
       - name: Update npm
         run: npm install -g npm@latest
       - run: npm ci
-      - run: npm run build
-      - run: npm publish --access public # For scoped packages; OIDC handles auth
+      - run: npm run build --if-present
+      - run: npm publish --access public
