A better
npm publish
- Interactive UI
- Ensures you are publishing from your release branch (
mainandmasterby default)- Ensures the working directory is clean and that there are no unpulled changes
- Reinstalls dependencies to ensure your project works with the latest dependency tree
- Ensures your Node.js and npm versions are supported by the project and its dependencies
- Runs the tests
- Bumps the version in package.json and npm-shrinkwrap.json (if present) and creates a git tag
- Prevents accidental publishing of pre-release versions under the
latestdist-tag- Publishes the new version to npm, optionally under a dist-tag
- Rolls back the project to its previous state in case publishing fails
- Pushes commits and tags (newly & previously created) to GitHub/GitLab
- Supports two-factor authentication
- Enables two-factor authentication on new repositories
(does not apply to external registries)- Opens a prefilled GitHub Releases draft after publish
- Warns about the possibility of extraneous files being published
- See exactly what will be executed with preview mode, without pushing or publishing anything remotely
- Supports GitHub Packages
- Node.js 10 or later
- npm 6.8.0 or later
- Git 2.11 or later
npm install --global np$ np --help Usage $ np <version> Version can be: patch | minor | major | prepatch | preminor | premajor | prerelease | 1.2.3 Options --any-branch Allow publishing from any branch --branch Name of the release branch (default: main | master) --no-cleanup Skips cleanup of node_modules --no-tests Skips tests --yolo Skips cleanup and testing --no-publish Skips publishing --preview Show tasks without actually executing them --tag Publish under a given dist-tag --no-yarn Don't use Yarn --contents Subdirectory to publish --no-release-draft Skips opening a GitHub release draft --release-draft-only Only opens a GitHub release draft --test-script Name of npm run script to run tests before publishing (default: test) --no-2fa Don't enable 2FA on new packages (not recommended) --message Version bump commit message. `%s` will be replaced with version. (default: '%s' with npm and 'v%s' with yarn) Examples $ np $ np patch $ np 1.0.2 $ np 1.0.2-beta.3 --tag=beta $ np 1.0.2-beta.3 --tag=beta --contents=distRun
npwithout arguments to launch the interactive UI that guides you through publishing a new version.
npcan be configured both locally and globally. When using the globalnpbinary, you can configure any of the CLI flags in either a.np-config.js,.np-config.cjsor.np-config.jsonfile in the home directory. When using the localnpbinary, for example, in anpm runscript, you can configurenpby setting the flags in either a top-levelnpfield inpackage.jsonor in a.np-config.js,.np-config.cjsor.np-config.jsonfile in the project directory. If it exists, the local installation will always take precedence. This ensures any local config matches the version ofnpit was designed for.Currently, these are the flags you can configure:
anyBranch- Allow publishing from any branch (falseby default).branch- Name of the release branch (masterby default).cleanup- Cleanupnode_modules(trueby default).tests- Runnpm test(trueby default).yolo- Skip cleanup and testing (falseby default).publish- Publish (trueby default).preview- Show tasks without actually executing them (falseby default).tag- Publish under a given dist-tag (latestby default).yarn- Use yarn if possible (trueby default).contents- Subdirectory to publish (.by default).releaseDraft- Open a GitHub release draft after releasing (trueby default).testScript- Name of npm run script to run tests before publishing (testby default).2fa- Enable 2FA on new packages (trueby default) (setting this tofalseis not recommended).message- The commit message used for the version bump. Any%sin the string will be replaced with the new version. By default, npm uses%sand Yarn usesv%s.For example, this configures
npto never use Yarn and to usedistas the subdirectory to publish:
package.json{ "name": "superb-package", "np": { "yarn": false, "contents": "dist" } }
.np-config.json{ "yarn": false, "contents": "dist" }
.np-config.jsor.np-config.cjsmodule.exports = { yarn: false, contents: 'dist' };Note: The global config only applies when using the global
npbinary, and is never inherited when using a local binary.You can use any of the test/version/publish related npm lifecycle hooks in your package.json to add extra behavior.
For example, here we build the documentation before tagging the release:
{ "name": "my-awesome-package", "scripts": { "version": "./build-docs && git add docs" } }You can also add
npto a custom script inpackage.json. This can be useful if you want all maintainers of a package to release the same way (Not forgetting to push Git tags, for example). However, you can't usepublishas name of your script because it's an npm defined lifecycle hook.{ "name": "my-awesome-package", "scripts": { "release": "np" }, "devDependencies": { "np": "*" } }If you want to run a user-defined test script before publishing instead of the normal
npm testoryarn test, you can use--test-scriptflag or thetestScriptconfig. This can be useful when your normal test script is running with a--watchflag or in case you want to run some specific tests (maybe on the packaged files) before publishing.For example,
np --test-script=publish-testwould run thepublish-testscript instead of the defaulttest.{ "name": "my-awesome-package", "scripts": { "test": "ava --watch", "publish-test": "ava" }, "devDependencies": { "np": "*" } }Set the
sign-git-tagnpm config to have the Git tag signed:$ npm config set sign-git-tag trueOr set the
version-sign-git-tagYarn config:$ yarn config set version-sign-git-tag true
You can use
npfor packages that aren't publicly published to npm (perhaps installed from a private git repo).Set
"private": truein yourpackage.jsonand the publishing step will be skipped. All other steps including versioning and pushing tags will still be completed.To publish scoped packages to the public registry, you need to set the access level to
public. You can do that by adding the following to yourpackage.json:"publishConfig": { "access": "public" }To publish a private Org-scoped package, you need to set the access level to
restricted. You can do that by adding the following to yourpackage.json:"publishConfig": { "access": "restricted" }Set the
registryoption in package.json to the URL of your registry:"publishConfig": { "registry": "https://my-internal-registry.local" }If you use a Continuous Integration server to publish your tagged commits, use the
--no-publishflag to skip the publishing step ofnp.To publish to
gh-pages(or any other branch that serves your static assets), installbranchsite, annp-like CLI tool aimed to complementnp, and create an npm "post" hook that runs afternp.$ npm install --save-dev branchsite"scripts": { "deploy": "np", "postdeploy": "bs" }For new packages, start the
versionfield in package.json at0.0.0and letnpbump it to1.0.0or0.1.0when publishing.To release a minor/patch version for an old major version, create a branch from the major version's git tag and run
np:$ git checkout -b fix-old-bug v1.0.0 # Where 1.0.0 is the previous major version # Create some commits… $ git push --set-upstream origin HEAD $ np patch --any-branch --tag=v1If you're using macOS Sierra 10.12.2 or later, your SSH key passphrase is no longer stored into the keychain by default. This may cause the
prerequisitestep to run forever because it prompts for your passphrase in the background. To fix this, add the following lines to your~/.ssh/configand run a simple Git command likegit fetch.Host * AddKeysToAgent yes UseKeychain yesIf you're running into other issues when using SSH, please consult GitHub's support article.
The ignore strategy, either maintained in the
files-property inpackage.jsonor in.npmignore, is meant to help reduce the package size. To avoid broken packages caused by essential files being accidentally ignored,npprints out all the new and unpublished files added to Git. Test files and other common files that are never published are not considered.npassumes either a standard directory layout or a customized layout represented in thedirectoriesproperty inpackage.json.If you get an error like this…
❯ Prerequisite check ✔ Ping npm registry ✔ Check npm version ✔ Check yarn version ✖ Verify user is authenticated npm ERR! code E403 npm ERR! 403 Forbidden - GET https://registry.yarnpkg.com/-/package/my-awesome-package/collaborators?format=cli - Forbidden…please check whether the command
npm access ls-collaborators my-awesome-packagesucceeds. If it doesn't, Yarn has overwritten your registry URL. To fix this, add the correct registry URL topackage.json:"publishConfig": { "registry": "https://registry.npmjs.org" }
forked from sindresorhus/np
-
Notifications
You must be signed in to change notification settings - Fork 0
A better `npm publish`
License
darth-coder-js/np
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
About
A better `npm publish`
Resources
License
Stars
Watchers
Forks
Packages 0
No packages published
Languages
- JavaScript 100.0%