Stop Worrying and Let the Robot Publish to NPM

Stop Worrying and Let the Robot Publish to NPM Managing
and Automating Package Testing and Releases @evantahler - Grouparoo

INTRODUCTION

THE PROBLEM Release Management is Hard for packages that other
people depend on

@evantahler

HUMANS WORKING TOGETHER

02 Metaphors How can we apply the best ideas about
deployment and release management to our NPM packages?

CONTINUOUS INTEGRATION & CONTINUOUS DEPLOYMENT CI - Merge back to
the ‘integration branch’ often Small units of work Tests to know that the feature is done & that it will continue to work CD - Deploy the ‘integration branch’ often Allows for ‘human’ testing and acceptance The real ‘end-to-end’ testing of the work Determines if the work can go to users (production)

CONTINUOUS INTEGRATION & CONTINUOUS DEPLOYMENT CI - Merge back to
the ‘integration branch’ often Small units of work Tests to know that the feature is done & that it will continue to work CD - Deploy the ‘integration branch’ often Allows for ‘human’ testing and acceptance The real ‘end-to-end’ testing of the work Determines if the work can go to users (production) Testing Builds Confidence

Bad Releases are a failure of testing

GIT FLOW

Git Flow Integration

Git Flow Integration Branch Release Branch

Git Flow Feature Branch Integration Branch Release Branch

Git Flow Feature Branch For Developers Integration Branch For PMs
& Leads Release Branch For Users

What does Git Flow look like with Build Artifacts?

NPM FLOW? (™) BUILD 01 TAG 02 TEST 03 PUBLISH
04

NPM FLOW! (™) Feature Branch v1.0.0-feature.0 Integration Branch v0.9.0-alpha.1 v0.9.0-alpha.2
v1.0.0-alpha.0 v1.0.0-alpha.1 Stable Branch v0.9.0 v1.0.0

NPM FLOW! (™) Feature Branch v1.0.0-feature.0 For Package Developers Integration Branch
v0.9.0-alpha.1 v0.9.0-alpha.2 v1.0.0-alpha.0 v1.0.0-alpha.1 For Testers Stable Branch v0.9.0 v1.0.0 For Package Consumers

Metaphors GIT FLOW Git Branches NPM FLOW NPM Tags Example
Projects #next tag #latest tag CI/CD Review Apps Staging Server Production Deploy

03 DEMO

https://github.com/evantahler/cascadiajs

TAGS !== VERSIONS The key to understanding NPM releases

04 AUTOMATION 5 weird tricks so you’ll never type `npm
publish` again!

`NPM PREPARE` LIFECYCLE HOOK “Run both BEFORE the package is
packed and published, on local npm install without any arguments, and when installing git dependencies (See below). This is run AFTER prepublish, but BEFORE prepublishOnly”

IGNORE DIST, PUBLISH DIST .gitignore

IGNORE DIST, PUBLISH DIST .npmignore .gitignore

`NPM VERSION` ON CI AND BACK AGAIN Integration Branch v0.9.0-alpha.1
v0.9.0-alpha.2

`NPM VERSION` ON CI AND BACK AGAIN Custom NPM Version
Commands: npm version prepatch --preid=alpha --message “[no ci] new version!!!” Based on the Branch Name or Feature

Commands: npm version prepatch --preid=alpha --message “[no ci] new version!!!” Based on the Branch Name or Feature Grant CI Access to NPM: echo "//registry.npmjs.org/:_authToken=$NPM_TOKEN" >> ~/.npmrc Generate a NPM Auth Token on npmjs.org

Commands: npm version prepatch --preid=alpha --message “[no ci] new version!!!” Based on the Branch Name or Feature Grant CI Access to NPM: echo "//registry.npmjs.org/:_authToken=$NPM_TOKEN" >> ~/.npmrc Generate a NPM Auth Token on npmjs.org Push to NPM: npm publish --tag alpha Or use custom tags for your branch

Commands: npm version prepatch --preid=alpha --message “[no ci] new version!!!” Based on the Branch Name or Feature Grant CI Access to NPM: echo "//registry.npmjs.org/:_authToken=$NPM_TOKEN" >> ~/.npmrc Generate a NPM Auth Token on npmjs.org Push to NPM: npm publish --tag alpha Or use custom tags for your branch Push the new version back to Git: git push && git push --tags Only on the Integration Branch Make sure CI has access to Git. You can usual use a commit message [no ci] to prevent loops

DEPLOY A TEST APP THAT USES `NEXT` Stable App

DEPLOY A TEST APP THAT USES `NEXT` Stable App Test
App

`NPM VERSION` For Stable Releases Integration Branch Stable Branch

PRODUCTION === STABLE BRANCH When on the Stable Branch: Make
a new ‘release’ tag: npm version patch Grant CI Access to NPM: echo "//registry.npmjs.org/:_authToken=$NPM_TOKEN" >> ~/.npmrc Push to NPM: npm publish --tag latest (or skip the --tag) Push the new version back to Git: git checkout master && git rebase stable && git push && git push --tags

a new ‘release’ tag: npm version patch Grant CI Access to NPM: echo "//registry.npmjs.org/:_authToken=$NPM_TOKEN" >> ~/.npmrc Push to NPM: npm publish --tag latest (or skip the --tag) Push the new version back to Git: git checkout master && git rebase stable && git push && git push --tags human discretion here

a new ‘release’ tag: npm version patch Grant CI Access to NPM: echo "//registry.npmjs.org/:_authToken=$NPM_TOKEN" >> ~/.npmrc Push to NPM: npm publish --tag latest (or skip the --tag) Push the new version back to Git: git checkout master && git rebase stable && git push && git push --tags human discretion here Or maybe semantic-release

NPM FLOW! (™) Feature Branch v1.0.0-feature.0 For Package Developers Integration Branch
v0.9.0-alpha.1 v0.9.0-alpha.2 v1.0.0-alpha.0 v1.0.0-alpha.1 v1.0.1-alpha.0 v1.0.1-alpha.1 v1.0.2-alpha.0 For Testers Stable Branch v0.9.0 v1.0.0 v1.0.1 For Package Consumers

Stop Worrying and Let the Robot Publish to NPM  Thank
You All my Co-workers & Grouparoo SlidesGo, Flaticon, Freepik BenSound.com Unsplash Carbon.now.sh NPM (Sorry!) Code: github.com/evantahler/cascadiajs

Stop Worrying and Let the Robot Publish to NPM

Stop Worrying and Let the Robot Publish to NPM

More Decks by Evan Tahler

Other Decks in Technology

Featured

Transcript