From 3eb4a9f6ae6b99648241768baf757e1d532340ef Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=EC=95=94=EB=83=A5=20=28imnyang=29?= <me@imnya.ng>
Date: Fri, 28 Nov 2025 12:01:35 +0900
Subject: [PATCH 1/2] Update release workflow with OIDC permissions

Added permissions for OIDC and cleared auth token.
---
 .github/workflows/release.yml | 11 +++++++++--
 1 file changed, 9 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index fe2e4d7..87ebf4c 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -5,19 +5,26 @@ on:
     branches:
       - release
 
+
+permissions:
+  id-token: write # Required for OIDC
+  contents: write
+
 jobs:
   release:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout branch
         uses: actions/checkout@v6
-      # - name: Setup pnpm
-      #   uses: pnpm/action-setup@v4
+      - name: Setup pnpm
+        uses: pnpm/action-setup@v4
       - name: Setup node.js 20
         uses: actions/setup-node@v6
         with:
           node-version: 24
           cache: 'npm'
+      - name: Clear auth token for OIDC
+        run: echo "NODE_AUTH_TOKEN=" >> $GITHUB_ENV
       - name: Install Dependencies
         run: npm i --frozen-lockfile
       - name: release

From 55de012d236dec0af237a90401d735d35e38086c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=EC=95=94=EB=83=A5=20=28imnyang=29?= <me@imnya.ng>
Date: Fri, 28 Nov 2025 12:01:57 +0900
Subject: [PATCH 2/2] Switch from npm to pnpm for package management

---
 .github/workflows/release.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 87ebf4c..02e4cdf 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -26,6 +26,6 @@ jobs:
       - name: Clear auth token for OIDC
         run: echo "NODE_AUTH_TOKEN=" >> $GITHUB_ENV
       - name: Install Dependencies
-        run: npm i --frozen-lockfile
+        run: pnpm i --frozen-lockfile
       - name: release
-        run: npm publish --verbose
+        run: pnpm publish --verbose