Bump MetaMask/action-npm-publish from 5 to 6

[dependabot]

Bumps MetaMask/action-npm-publish from 5 to 6.

Release notes

Sourced from MetaMask/action-npm-publish's releases.

6.0.0

Added

• BREAKING: Add support for NPM staged publishing (#112)
  • Publishing now requires OIDC, with the exception of the initial publish (which still uses an NPM token).
  • The action now uses staged publishing, meaning packages must be approved on NPM before they are published.
  • The minimum Yarn version is now 4.16.0, and npm is no longer supported.
• BREAKING: Bump minimum Node.js version to 22.14.0 (#113)

5.3.1

Fixed

• Only install pkdiff if no token was specified (#109)
• Specify version for pkdiff (#111)

5.3.0

Changed

• Only enable command logging if RUNNER_DEBUG is set (#94, #105)

Fixed

• Fix additions showing up as removals, and vice versa in package diff (#98)

5.2.0

Added

• Handle publishing of packages not on Yarn Berry with NPM (#87)

Changed

• Only show packages in the dry run that need publishing (#90)

Fixed

• Fix report script for unpublished packages (#93)
• Recognize NPM_TOKEN environment variable (#87)

5.1.2

Fixed

• Fix report script when publishing package with dash in organisation name (#85)

5.1.1

Fixed

• Add missing configuration for non-default Slack channel messages (#81)

5.1.0

Added

• Improve Dry Run Output (#64)
  • The dry run step now includes a detailed report about the changes in each published package. It is stored as an artifact, and a link is shared in the logs of the "Dry Run Publish" step.

Fixed

• Fix Slack announcement for public default channel (#73, #77)
  • We have found that the Slack announcement does not work correctly for public channels when the channel parameter is given. The action has been updated to omit the default if no channel is specified, so that announcements to the default channel work correctly even if it is public.
  • This was originally published in v4.0.4, but this is the first v5.x release that includes this change.

5.0.1

... (truncated)

Changelog

Sourced from MetaMask/action-npm-publish's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[Unreleased]

[6.0.0]

Added

• BREAKING: Add support for NPM staged publishing (#112)
  • Publishing now requires OIDC, with the exception of the initial publish (which still uses an NPM token).
  • The action now uses staged publishing, meaning packages must be approved on NPM before they are published.
  • The minimum Yarn version is now 4.16.0, and npm is no longer supported.
• BREAKING: Bump minimum Node.js version to 22.14.0 (#113)

[5.3.1]

Fixed

• Only install pkdiff if no token was specified (#109)
• Specify version for pkdiff (#111)

[5.3.0]

Changed

• Only enable command logging if RUNNER_DEBUG is set (#94, #105)

Fixed

• Fix additions showing up as removals, and vice versa in package diff (#98)

[5.2.0]

Added

• Handle publishing of packages not on Yarn Berry with NPM (#87)

Changed

• Only show packages in the dry run that need publishing (#90)

Fixed

• Fix report script for unpublished packages (#93)
• Recognize NPM_TOKEN environment variable (#87)

[5.1.2]

Fixed

• Fix report script when publishing package with dash in organisation name (#85)

[5.1.1]

Fixed

• Add missing configuration for non-default Slack channel messages (#81)

[5.1.0]

Added

• Improve Dry Run Output (#64)

... (truncated)

Commits

• 7317b49 6.0.0 (#116)
• 54e98b0 feat!: Add support for NPM staged publishing (#112)
• cded853 Bump Yarn to 4.16.0 (#115)
• 4a910cf chore: Bump Yarn to v4, align workflows with module template (#114)
• 6364508 chore!: Drop support for Node.js <22 (#113)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)