fix(ci): tempalte

.github/workflows/npm_publish_package.yml

@@ -1,43 +1,36 @@
-name: NPM Publish Package
-
+name: Release
 on:
   push:
-    branches: [ master, beta, alpha ]
+    branches:
+      - beta
 
-jobs:
-  quality:
-    name: Quality Control
-    uses: cnpja/workflows/.github/workflows/nodejs_quality_control.yaml@master
-    secrets: inherit
+permissions:
+  contents: read # for checkout
 
-  publish:
-    name: NPM Publish
+jobs:
+  release:
+    name: Release
     runs-on: ubuntu-latest
-    needs: quality
-
+    permissions:
+      contents: write # to be able to publish a GitHub release
+      issues: write # to be able to comment on released issues
+      pull-requests: write # to be able to comment on released pull requests
+      id-token: write # to enable use of OIDC for npm provenance
     steps:
-      - name: Checkout Code
+      - name: Checkout
         uses: actions/checkout@v3
         with:
-          persist-credentials: false
           fetch-depth: 0
-
       - name: Setup Node.js
         uses: actions/setup-node@v3
         with:
-          node-version: 20.x
-
-      - name: Install Dependencies
-        run: |
-          npm i -g pnpm
-          pnpm i --frozen-lockfile
-
-      - name: Build Distributable
-        run: pnpm build
-
-      - name: Publish Package
+          node-version: "lts/*"
+      - name: Install dependencies
+        run: npm clean-install
+      - name: Verify the integrity of provenance attestations and registry signatures for installed dependencies
+        run: npm audit signatures
+      - name: Release
         env:
-          GITHUB_TOKEN : ${{ secrets.GH_TOKEN }}
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
           NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
-          HUSKY: 0
-        run: pnpm release
+        run: npx semantic-release