@doist/comms-sdk-typescript

@doist/comms-sdk-typescript

⚠️ IMPORTANT NOTICE ⚠️

This package is created solely for the purpose of setting up OIDC (OpenID Connect) trusted publishing with npm.

This is NOT a functional package and contains NO code or functionality beyond the OIDC setup configuration.

Purpose

This package exists to:

• Configure OIDC trusted publishing for the package name @doist/comms-sdk-typescript
• Enable secure, token-less publishing from CI/CD workflows
• Establish provenance for packages published under this name

What is OIDC Trusted Publishing?

OIDC trusted publishing allows package maintainers to publish packages directly from their CI/CD workflows without needing to manage npm access tokens. Instead, it uses OpenID Connect to establish trust between the CI/CD provider (like GitHub Actions) and npm.

Setup Instructions

To properly configure OIDC trusted publishing for this package:

• Go to npmjs.com and navigate to your package settings
• Configure the trusted publisher (e.g., GitHub Actions)
• Specify the repository and workflow that should be allowed to publish
• Use the configured workflow to publish your actual package

DO NOT USE THIS PACKAGE

This package is a placeholder for OIDC configuration only. It:

• Contains no executable code
• Provides no functionality
• Should not be installed as a dependency
• Exists only for administrative purposes

More Information

For more details about npm's trusted publishing feature, see:

• npm Trusted Publishing Documentation
• GitHub Actions OIDC Documentation

Maintained for OIDC setup purposes only