npm trusted publishing now supports CircleCI

Published: 0 month ago (April 6, 2026 at 08:20 PM EDT)

1 min read

Source: GitHub Changelog

CircleCI Support for npm Trusted Publishing

npm trusted publishing now supports CircleCI as an OIDC provider, joining GitHub Actions and GitLab CI/CD. Maintainers publishing from CircleCI workflows can eliminate stored credentials entirely and authenticate directly through their CI/CD pipeline.

Configuration

Trusted publishing can be configured through the npm website and the npm trust CLI command. See the trusted publishing documentation for setup instructions.

Dark Mode for npmjs.com

We’re also shipping dark mode for the npmjs.com website, one of the most requested features from the community. Our team built this using GitHub Copilot agent mode, allowing us to deliver it with minimal engineering time beyond final review and shipping. Our focus remains on strengthening npm security and enhancing maintainer agency over the packages they publish.

Feedback and Discussion

To share feedback or ask questions, join the community discussion.

npm trusted publishing now supports CircleCI

CircleCI Support for npm Trusted Publishing

Configuration

Dark Mode for npmjs.com

Feedback and Discussion

Related posts

Enforcing new limits and retiring Opus 4.6 Fast from Copilot Pro+

Pausing new GitHub Copilot Pro trials

Copilot CLI activity now included in usage metrics totals and feature breakdowns

GitHub Mobile: Research and code with Copilot cloud agent anywhere