Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

Improve the release process to better handle OTP

See original GitHub issue

I was able to release 9.4.0 following @ntwb’s instructions.

It was a bit clunky because:

I had to, as per the instructions, manually delete and re-checkout the .npmrc file
I had to run NPM_CONFIG_OTP=123456 npm run release to trigger the prerelease checks, wait for publish step to fail because the OTP would expire, then run NPM_CONFIG_OTP=987654 npm run release -- --skip-test --skip-cleanup to publish before the new OTP expired.

Hopefully number 1 will be addressed by @hudochenkov’s PR to npmpub.

Maybe number 2 can also be addressed in npmpub, maybe by an interactive prompt that asks you for a OTP just before the publish step?

It’d be great to keep using npmpub for these reasons.

Thoughts?

Background: the stylelint npm package maintainers have turned on two-factor auth following ESLint’s postmortem recommendations. So we now need to supply a one-time-password when publishing npm packages.

Issue Analytics

State:
Created 5 years ago
Comments:8 (8 by maintainers)

Top GitHub Comments

2reactions

hudochenkovcommented, Apr 18, 2019

I tried np last two releases of stylelint-order and was quite happy with it. It’s much better than npmpub experience I had this weekend 😃

I’d love to see how np’s OTP works in practice. If it’s an interactive prompt that works with our long-running tests then that would be superb.

Yes. In one of steps it asks for OTP in prompt.

For np we would need to add this line to .npmrc, otherwise git tag would be v10.1.0 (notice the “v”):

tag-version-prefix = ""

0reactions

jeddy3commented, Apr 18, 2019

I’ve a bit more testing to do, but out of time for today

Excellent stuff. This is all very interesting.

I’d love to see how np’s OTP works in practice. If it’s an interactive prompt that works with our long-running tests then that would be superb.

Top Results From Across the Web

What tips do you have for improving software release ...

For proper release automation, I would suggest the following good practices: 1) Validate the quality of the code as soon as possible. For...

Tips to Improve Release Management for Apps

Looking for some tech tips on software release management? Pieces of expert advice, best strategies, and DevOps tools in this Relevant ...

Software Release Management: Best Practices, Stages & Roles

Release management is the process of optimizing all stages of launching a software product or feature. As enterprise software delivery ...

IT release management challenges & best practices

Common release management challenges and best practices to deal with them - 1. Poor build quality and release speed, 2. Lack of visibility,...

How to improve your OTP authentication using typing biometrics

See the most common types of OTP authentication and a valid alternative solution that provides increased security without harming the UX.

Troubleshoot Live Code

Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.

Start Free

Top Related Reddit Thread

No results found

Top Related Tweet

No results found

Top Related Dev.to Post

No results found

Improve the release process to better handle OTP

Issue Analytics

Top GitHub Comments

Top Results From Across the Web

Top Related Medium Post

Top Related StackOverflow Question

Troubleshoot Live Code

Top Related Reddit Thread

Top Related Hackernoon Post

Top Related Tweet

Top Related Dev.to Post

Top Related Hashnode Post

Fix deletion of code with --fix option

Add no-unbalanced-parentheses