From ddf89d28abbcc1fc31313ae2effe856f951e2e66 Mon Sep 17 00:00:00 2001
From: Adam Simon <adamosimoni@gmail.com>
Date: Fri, 17 Oct 2025 12:54:16 +0200
Subject: [PATCH 1/2] Configure GitHub workflow to use trusted publishing

---
 .github/workflows/js-sdk-ci.yml | 13 +++++++++----
 1 file changed, 9 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/js-sdk-ci.yml b/.github/workflows/js-sdk-ci.yml
index 6df4f921..69f62eec 100644
--- a/.github/workflows/js-sdk-ci.yml
+++ b/.github/workflows/js-sdk-ci.yml
@@ -306,8 +306,11 @@ jobs:
 
   publish:
     needs: coverage
-    runs-on: ubuntu-latest
     if: startsWith(github.ref, 'refs/tags')
+    runs-on: ubuntu-latest
+    permissions:
+      id-token: write # Required for OIDC (see also https://docs.npmjs.com/trusted-publishers)
+      contents: read
     steps:
       - uses: actions/checkout@v5
 
@@ -316,10 +319,12 @@ jobs:
           node-version: 22
           registry-url: 'https://registry.npmjs.org'
 
-      - name: Install dependencies
+      # Ensure npm 11.5.1 or later is installed
+      - name: Update npm
+        run: npm install -g npm@latest
+
+      - name: Install dependencies & build
         run: npm install
 
       - name: 🚀Publish
         run: npm publish --access public
-        env:
-          NODE_AUTH_TOKEN: ${{ secrets.NPM_API_KEY }}

From a432c86b5738a600e1369f8d2bb39037af34e6f6 Mon Sep 17 00:00:00 2001
From: Adam Simon <adamosimoni@gmail.com>
Date: Fri, 17 Oct 2025 12:56:01 +0200
Subject: [PATCH 2/2] Bump version

---
 package-lock.json | 4 ++--
 package.json      | 2 +-
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index 8c7bfdca..06032be6 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -1,12 +1,12 @@
 {
   "name": "@configcat/sdk",
-  "version": "1.0.1",
+  "version": "1.0.2",
   "lockfileVersion": 3,
   "requires": true,
   "packages": {
     "": {
       "name": "@configcat/sdk",
-      "version": "1.0.1",
+      "version": "1.0.2",
       "license": "MIT",
       "devDependencies": {
         "@babel/preset-env": "^7.28.0",
diff --git a/package.json b/package.json
index aa0aed10..ee437a4c 100644
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
   "name": "@configcat/sdk",
-  "version": "1.0.1",
+  "version": "1.0.2",
   "description": "ConfigCat is a configuration as a service that lets you manage your features and configurations without actually deploying new code.",
   "main": "lib/cjs/node/index.main.js",
   "types": "lib/cjs/node/index.main.d.ts",