From 679a8a3620f12469fee5185f399c10034d963cee Mon Sep 17 00:00:00 2001 From: Lukas Saltenas Date: Sat, 1 Nov 2025 10:52:01 +0200 Subject: [PATCH 1/2] chore: use public packages from @deepnote/ org in npm --- .github/workflows/ci.yml | 34 --------------- .github/workflows/copilot-setup-steps.yml | 5 --- .github/workflows/deps.yml | 5 --- .github/workflows/package.yml | 5 --- .npmrc | 1 - package-lock.json | 50 +++++++++++++++-------- package.json | 4 +- renovate.json | 1 - 8 files changed, 35 insertions(+), 70 deletions(-) delete mode 100644 .npmrc diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index c99997aebe..c9183c8df7 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -10,7 +10,6 @@ on: permissions: actions: read contents: read - packages: read concurrency: group: ${{ github.workflow }}-${{ github.ref }} @@ -30,13 +29,9 @@ jobs: with: cache: 'npm' node-version-file: '.nvmrc' - registry-url: 'https://npm.pkg.github.com' - scope: '@deepnote' - name: Install dependencies run: npm ci --prefer-offline --no-audit - env: - NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} - name: Run ESLint run: npm run lint @@ -57,13 +52,9 @@ jobs: with: cache: 'npm' node-version-file: '.nvmrc' - registry-url: 'https://npm.pkg.github.com' - scope: '@deepnote' - name: Install dependencies run: npm ci --prefer-offline --no-audit - env: - NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} - name: Run TypeScript type checking run: npm run typecheck @@ -95,7 +86,6 @@ jobs: permissions: id-token: write contents: read - packages: read steps: - name: Checkout uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5 @@ -105,13 +95,9 @@ jobs: with: cache: 'npm' node-version-file: '.nvmrc' - registry-url: 'https://npm.pkg.github.com' - scope: '@deepnote' - name: Install dependencies run: npm ci --prefer-offline --no-audit - env: - NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} - name: Compile TypeScript run: npm run compile @@ -155,13 +141,9 @@ jobs: with: cache: 'npm' node-version-file: '.nvmrc' - registry-url: 'https://npm.pkg.github.com' - scope: '@deepnote' - name: Install dependencies run: npm ci - env: - NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} - name: Check Licenses run: npm run check-licenses @@ -179,13 +161,9 @@ jobs: with: cache: 'npm' node-version-file: '.nvmrc' - registry-url: 'https://npm.pkg.github.com' - scope: '@deepnote' - name: Install dependencies run: npm ci --prefer-offline --no-audit - env: - NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} - name: Run spell check run: npm run spell-check @@ -203,13 +181,9 @@ jobs: with: cache: 'npm' node-version-file: '.nvmrc' - registry-url: 'https://npm.pkg.github.com' - scope: '@deepnote' - name: Install dependencies run: npm install - env: - NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} - name: Check package lock drift run: | @@ -228,13 +202,9 @@ jobs: with: cache: 'npm' node-version-file: '.nvmrc' - registry-url: 'https://npm.pkg.github.com' - scope: '@deepnote' - name: Install dependencies run: npm ci --prefer-offline --no-audit - env: - NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} - name: Run audit for production dependencies run: npm audit --production @@ -252,13 +222,9 @@ jobs: with: cache: 'npm' node-version-file: '.nvmrc' - registry-url: 'https://npm.pkg.github.com' - scope: '@deepnote' - name: Install dependencies run: npm ci --prefer-offline --no-audit - env: - NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} - name: Run audit for all dependencies run: npm audit diff --git a/.github/workflows/copilot-setup-steps.yml b/.github/workflows/copilot-setup-steps.yml index 594569d554..bca62518c0 100644 --- a/.github/workflows/copilot-setup-steps.yml +++ b/.github/workflows/copilot-setup-steps.yml @@ -30,7 +30,6 @@ jobs: permissions: # If you want to clone the repository as part of your setup steps, for example to install dependencies, you'll need the `contents: read` permission. If you don't clone the repository in your setup steps, Copilot will do this for you automatically after the steps complete. contents: read - packages: read # You can define any steps you want, and they will run before the agent starts. # If you do not check out your code, Copilot will do this for you. @@ -42,8 +41,6 @@ jobs: uses: actions/setup-node@2028fbc5c25fe9cf00d9f06a71cc4710d4507903 # v6 with: node-version-file: '.nvmrc' - registry-url: 'https://npm.pkg.github.com' - scope: '@deepnote' - name: Cache npm files uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4 @@ -61,8 +58,6 @@ jobs: # Let that happen in other jobs, this job needs to be fast - name: npm ci run: npm ci --ignore-scripts --prefer-offline --no-audit - env: - NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} - name: npm run postinstall run: npm run postinstall diff --git a/.github/workflows/deps.yml b/.github/workflows/deps.yml index b53380caef..5a3525dc19 100644 --- a/.github/workflows/deps.yml +++ b/.github/workflows/deps.yml @@ -9,7 +9,6 @@ on: permissions: actions: read contents: read - packages: read concurrency: group: ${{ github.workflow }}-${{ github.ref }} @@ -28,13 +27,9 @@ jobs: with: cache: 'npm' node-version-file: '.nvmrc' - registry-url: 'https://npm.pkg.github.com' - scope: '@deepnote' - name: Install dependencies run: npm ci --prefer-offline --no-audit - env: - NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} - name: Run security audit run: npm audit --json > audit-report.json || true diff --git a/.github/workflows/package.yml b/.github/workflows/package.yml index 2e49c61f44..c8edf8831b 100644 --- a/.github/workflows/package.yml +++ b/.github/workflows/package.yml @@ -9,7 +9,6 @@ on: permissions: contents: read - packages: read concurrency: group: ${{ github.workflow }}-${{ github.ref }} @@ -29,13 +28,9 @@ jobs: with: cache: 'npm' node-version-file: '.nvmrc' - registry-url: 'https://npm.pkg.github.com' - scope: '@deepnote' - name: Install dependencies run: npm ci --prefer-offline --no-audit - env: - NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }} - name: Install vsce run: npm install -g @vscode/vsce diff --git a/.npmrc b/.npmrc deleted file mode 100644 index 9c7ee1bdec..0000000000 --- a/.npmrc +++ /dev/null @@ -1 +0,0 @@ -@deepnote:registry=https://npm.pkg.github.com diff --git a/package-lock.json b/package-lock.json index a418c429b4..b60b47951d 100644 --- a/package-lock.json +++ b/package-lock.json @@ -11,7 +11,7 @@ "license": "MIT", "dependencies": { "@c4312/evt": "^0.1.1", - "@deepnote/blocks": "^1.2.0", + "@deepnote/blocks": "^1.3.5", "@deepnote/convert": "^1.1.0", "@enonic/fnv-plus": "^1.3.0", "@jupyter-widgets/base": "^6.0.8", @@ -1366,23 +1366,32 @@ } }, "node_modules/@deepnote/blocks": { - "version": "1.2.0", - "resolved": "https://npm.pkg.github.com/download/@deepnote/blocks/1.2.0/8192752d1ed398930eaa3373a802f1285c034d93", - "integrity": "sha512-EFiWpCMz5/55eUW6Udvonqc1xtVtVaPA7+4T1RGdkiYyBhx17gyU9DmDpyjz+gP+j64AHrmnL2VVaqtwu0YHkA==", + "version": "1.3.5", + "resolved": "https://registry.npmjs.org/@deepnote/blocks/-/blocks-1.3.5.tgz", + "integrity": "sha512-xvZiWZbX5ChktvBeDtRzkCbN550T2LIsaPnRZMXKaU3y8pu89wtsFCzqJ6hS7uwVUaJkNF4Z/1THd4N8VqnFtQ==", "license": "Apache-2.0", "dependencies": { "ts-dedent": "^2.2.0", "yaml": "^2.8.1", - "zod": "^4.1.12" + "zod": "3.25.76" + } + }, + "node_modules/@deepnote/blocks/node_modules/zod": { + "version": "3.25.76", + "resolved": "https://registry.npmjs.org/zod/-/zod-3.25.76.tgz", + "integrity": "sha512-gzUt/qt81nXsFGKIFcC3YnfEAx5NkunCfnDlvuBSSFS02bcXu4Lmea0AFIUwbLWxWPx3d9p8S5QoaujKcNQxcQ==", + "license": "MIT", + "funding": { + "url": "https://github.com/sponsors/colinhacks" } }, "node_modules/@deepnote/convert": { - "version": "1.1.0", - "resolved": "https://npm.pkg.github.com/download/@deepnote/convert/1.1.0/a958e021961c598d59c60afc7b89889bb6741804", - "integrity": "sha512-GrGt4EinEWDuflI7SMjWsd82cTn6SK/Hg+HsaqYiHUEn0WWMr1ckl4F8bcat0ucDKTOyGEO8X/XpqDEK20cFqA==", + "version": "1.2.0", + "resolved": "https://registry.npmjs.org/@deepnote/convert/-/convert-1.2.0.tgz", + "integrity": "sha512-GrmKajsveWPsxGEEodyOG3AXkgk+nNVd3yF+3zJKxpRXsuaU+XWkM9ZCmlwkuj3gCHeVeU5fXFVR2CRrKYc78g==", "license": "Apache-2.0", "dependencies": { - "@deepnote/blocks": "1.2.0", + "@deepnote/blocks": "1.3.5", "chalk": "^5.6.2", "cleye": "^1.3.4", "ora": "^9.0.0", @@ -21565,21 +21574,28 @@ "dev": true }, "@deepnote/blocks": { - "version": "1.2.0", - "resolved": "https://npm.pkg.github.com/download/@deepnote/blocks/1.2.0/8192752d1ed398930eaa3373a802f1285c034d93", - "integrity": "sha512-EFiWpCMz5/55eUW6Udvonqc1xtVtVaPA7+4T1RGdkiYyBhx17gyU9DmDpyjz+gP+j64AHrmnL2VVaqtwu0YHkA==", + "version": "1.3.5", + "resolved": "https://registry.npmjs.org/@deepnote/blocks/-/blocks-1.3.5.tgz", + "integrity": "sha512-xvZiWZbX5ChktvBeDtRzkCbN550T2LIsaPnRZMXKaU3y8pu89wtsFCzqJ6hS7uwVUaJkNF4Z/1THd4N8VqnFtQ==", "requires": { "ts-dedent": "^2.2.0", "yaml": "^2.8.1", - "zod": "^4.1.12" + "zod": "3.25.76" + }, + "dependencies": { + "zod": { + "version": "3.25.76", + "resolved": "https://registry.npmjs.org/zod/-/zod-3.25.76.tgz", + "integrity": "sha512-gzUt/qt81nXsFGKIFcC3YnfEAx5NkunCfnDlvuBSSFS02bcXu4Lmea0AFIUwbLWxWPx3d9p8S5QoaujKcNQxcQ==" + } } }, "@deepnote/convert": { - "version": "1.1.0", - "resolved": "https://npm.pkg.github.com/download/@deepnote/convert/1.1.0/a958e021961c598d59c60afc7b89889bb6741804", - "integrity": "sha512-GrGt4EinEWDuflI7SMjWsd82cTn6SK/Hg+HsaqYiHUEn0WWMr1ckl4F8bcat0ucDKTOyGEO8X/XpqDEK20cFqA==", + "version": "1.2.0", + "resolved": "https://registry.npmjs.org/@deepnote/convert/-/convert-1.2.0.tgz", + "integrity": "sha512-GrmKajsveWPsxGEEodyOG3AXkgk+nNVd3yF+3zJKxpRXsuaU+XWkM9ZCmlwkuj3gCHeVeU5fXFVR2CRrKYc78g==", "requires": { - "@deepnote/blocks": "1.2.0", + "@deepnote/blocks": "1.3.5", "chalk": "^5.6.2", "cleye": "^1.3.4", "ora": "^9.0.0", diff --git a/package.json b/package.json index e046a9efc6..7b84ea195f 100644 --- a/package.json +++ b/package.json @@ -2370,8 +2370,8 @@ }, "dependencies": { "@c4312/evt": "^0.1.1", - "@deepnote/blocks": "^1.2.0", - "@deepnote/convert": "^1.1.0", + "@deepnote/blocks": "^1.3.5", + "@deepnote/convert": "^1.2.0", "@enonic/fnv-plus": "^1.3.0", "@jupyter-widgets/base": "^6.0.8", "@jupyter-widgets/controls": "^5.0.9", diff --git a/renovate.json b/renovate.json index 9bc0ff5f4e..19f1296a14 100644 --- a/renovate.json +++ b/renovate.json @@ -22,7 +22,6 @@ "minimumReleaseAge": "3 days", "enabled": true }, - "npmrc": "@deepnote:registry=https://npm.pkg.github.com\nalways-auth=true\n", "ignoreDeps": [ "@apollo/client", "@chakra-ui/react", From 64a59ea50fa84682cdbada1e70edddf3014f02a1 Mon Sep 17 00:00:00 2001 From: Lukas Saltenas Date: Sat, 1 Nov 2025 10:59:23 +0200 Subject: [PATCH 2/2] fix: package lock drift --- package-lock.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/package-lock.json b/package-lock.json index b60b47951d..612c821116 100644 --- a/package-lock.json +++ b/package-lock.json @@ -12,7 +12,7 @@ "dependencies": { "@c4312/evt": "^0.1.1", "@deepnote/blocks": "^1.3.5", - "@deepnote/convert": "^1.1.0", + "@deepnote/convert": "^1.2.0", "@enonic/fnv-plus": "^1.3.0", "@jupyter-widgets/base": "^6.0.8", "@jupyter-widgets/controls": "^5.0.9",