glimmerjs · NullVoxPopuli · Mar 4, 2025 · Mar 4, 2025
diff --git a/.github/workflows/plan-release.yml b/.github/workflows/plan-release.yml
@@ -51,12 +51,12 @@ jobs:
         with:
           fetch-depth: 0
           ref: 'main'
-      - uses: pnpm/action-setup@v4
-      - uses: actions/setup-node@v4
+      - uses: wyvox/action-setup-pnpm@v3
         with:
-          node-version: 22
-          cache: pnpm
-      - run: pnpm install --frozen-lockfile
+          # We have to keep ignore-scripts so that we skip post-install.
+          # Post-install won't pass on CI and is meant for local smoke tests
+          args: '--ignore-scripts'
+          node-version: 22.13.0
       - name: "Generate Explanation and Prep Changelogs"
         id: explanation
         run: |

diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
@@ -28,14 +28,12 @@ jobs:
 
     steps:
       - uses: actions/checkout@v4
-      - uses: pnpm/action-setup@v4
-      - uses: actions/setup-node@v4
+      - uses: wyvox/action-setup-pnpm@v3
         with:
-          node-version: 22
+          args: '--ignore-scripts'
+          node-version: 22.13.0
           # This creates an .npmrc that reads the NODE_AUTH_TOKEN environment variable
-          registry-url: 'https://registry.npmjs.org'
-          cache: pnpm
-      - run: pnpm install --frozen-lockfile
+          node-registry-url: 'https://registry.npmjs.org'
       - name: Publish to NPM
         run: NPM_CONFIG_PROVENANCE=true pnpm release-plan publish
         env: