docs: update repo

Author: bordumb

.github/workflows/ci.yml

@@ -16,7 +16,7 @@ jobs:
       - name: Checkout auths repo (for local @auths/verifier dependency)
         uses: actions/checkout@v4
         with:
-          repository: bordumb/auths
+          repository: auths-dev/auths
           path: ../auths
 
       - name: Install Rust

README.md

@@ -1,9 +1,9 @@
 # `<auths-verify>` Web Component
 
 [![npm version](https://img.shields.io/npm/v/auths-verify.svg)](https://www.npmjs.com/package/auths-verify)
-[![license](https://img.shields.io/npm/l/auths-verify.svg)](https://github.com/bordumb/auths-verify-widget/blob/main/LICENSE)
+[![license](https://img.shields.io/npm/l/auths-verify.svg)](https://github.com/auths-dev/auths-verify-widget/blob/main/LICENSE)
 
-A drop-in web component that verifies [Auths](https://github.com/bordumb/auths) decentralized identities — the open-source equivalent of GitHub's green "Verified" badge. Point it at any repository that uses Auths, and it cryptographically verifies the identity chain in the browser via WASM.
+A drop-in web component that verifies [Auths](https://github.com/auths-dev/auths) decentralized identities — the open-source equivalent of GitHub's green "Verified" badge. Point it at any repository that uses Auths, and it cryptographically verifies the identity chain in the browser via WASM.
 
 ## Install
 
@@ -39,7 +39,7 @@ That's it. The widget will:
 4. Cryptographically verify the full attestation chain
 5. Display a badge showing the result (Verified, Invalid, Expired, etc.)
 
-**Prerequisite:** The repository owner must have set up an Auths identity with [`auths init`](https://github.com/bordumb/auths). If the repo doesn't have Auths identity data, the widget will show an error.
+**Prerequisite:** The repository owner must have set up an Auths identity with [`auths init`](https://github.com/auths-dev/auths). If the repo doesn't have Auths identity data, the widget will show an error.
 
 **Supported forges:** GitHub and Gitea (including self-hosted). GitLab is not supported for auto-resolve because its API does not expose custom Git refs — use manual mode instead.
 
@@ -177,7 +177,7 @@ The resolver layer uses dynamic imports — if you only use manual `attestation`
 - Node.js >= 18
 - Rust 1.93+ with `wasm32-unknown-unknown` target (for WASM builds)
 - [wasm-pack](https://rustwasm.github.io/wasm-pack/)
-- The [auths](https://github.com/bordumb/auths) repo cloned alongside this one:
+- The [auths](https://github.com/auths-dev/auths) repo cloned alongside this one:
   ```
   auths-base/
   ├── auths/                  # main auths repo

examples/auto-resolve.html

@@ -25,21 +25,21 @@ <h1>Auto-Resolve from Repository</h1>
 
   <h2>GitHub Repository</h2>
   <p>Uses the <code>repo</code> attribute to auto-resolve from GitHub:</p>
-  <pre>&lt;auths-verify repo="https://github.com/bordumb/auths"&gt;&lt;/auths-verify&gt;</pre>
+  <pre>&lt;auths-verify repo="https://github.com/auths-dev/auths"&gt;&lt;/auths-verify&gt;</pre>
   <div class="demo">
     <auths-verify
       id="github-demo"
-      repo="https://github.com/bordumb/auths"
+      repo="https://github.com/auths-dev/auths"
     ></auths-verify>
   </div>
   <p class="log" id="github-log">Waiting...</p>
 
   <h2>With Tooltip Mode</h2>
   <p>Combine <code>repo</code> with display modes:</p>
-  <pre>&lt;auths-verify repo="https://github.com/bordumb/auths" mode="tooltip"&gt;&lt;/auths-verify&gt;</pre>
+  <pre>&lt;auths-verify repo="https://github.com/auths-dev/auths" mode="tooltip"&gt;&lt;/auths-verify&gt;</pre>
   <div class="demo">
     <auths-verify
-      repo="https://github.com/bordumb/auths"
+      repo="https://github.com/auths-dev/auths"
       mode="tooltip"
     ></auths-verify>
   </div>
@@ -62,7 +62,7 @@ <h2>Forge Hint Override</h2>
 
   <h2>Identity Filter</h2>
   <p>Use <code>identity</code> to resolve a specific identity when a repo has multiple:</p>
-  <pre>&lt;auths-verify repo="https://github.com/bordumb/auths" identity="did:key:z6Mk..."&gt;&lt;/auths-verify&gt;</pre>
+  <pre>&lt;auths-verify repo="https://github.com/auths-dev/auths" identity="did:key:z6Mk..."&gt;&lt;/auths-verify&gt;</pre>
 
   <script type="module" src="../src/auths-verify.ts"></script>
   <script>

package.json

@@ -1,6 +1,6 @@
 {
   "name": "auths-verify",
-  "version": "0.1.1",
+  "version": "0.1.2",
   "description": "Drop-in <auths-verify> web component for decentralized commit verification",
   "type": "module",
   "main": "dist/auths-verify.mjs",
@@ -23,7 +23,7 @@
     "build": "npm run build:full && npm run build:slim",
     "build:full": "INLINE_WASM=true vite build",
     "build:slim": "vite build --mode slim",
-    "build:wasm": "cd ../auths/crates/auths-verifier && wasm-pack build --target bundler --features wasm && rm -rf ../../../auths-verify-widget/wasm && mv pkg ../../../auths-verify-widget/wasm",
+    "build:wasm": "cd ../auths/crates/auths-verifier && wasm-pack build --target bundler --no-default-features --features wasm && rm -rf ../../../auths-verify-widget/wasm && mv pkg ../../../auths-verify-widget/wasm",
     "typecheck": "tsc --noEmit",
     "test": "vitest run",
     "test:watch": "vitest",

scripts/release/npm.py

@@ -0,0 +1,200 @@
+#!/usr/bin/env python3
+"""
+Build and publish auths-verify to npm.
+
+Usage:
+    python scripts/release/npm.py          # dry-run (shows what would happen)
+    python scripts/release/npm.py --push   # build, test, and publish to npm
+
+What it does:
+    1. Reads the version from package.json
+    2. Checks npm registry to make sure the version has been bumped
+    3. Checks that the git working tree is clean
+    4. Rebuilds WASM, runs tests, and builds the dist
+    5. Publishes to npm with --access public
+    6. Creates and pushes a git tag v{version}
+
+Requires:
+    - python3 (no external dependencies)
+    - node/npm on PATH
+    - wasm-pack on PATH (for WASM build)
+    - git on PATH
+    - npm authentication (npm login or NPM_TOKEN)
+"""
+
+import json
+import subprocess
+import sys
+import urllib.request
+from pathlib import Path
+
+REPO_ROOT = Path(__file__).resolve().parents[2]
+PACKAGE_JSON = REPO_ROOT / "package.json"
+NPM_REGISTRY_URL = "https://registry.npmjs.org/auths-verify"
+
+
+def get_version() -> str:
+    data = json.loads(PACKAGE_JSON.read_text())
+    version = data.get("version")
+    if not version:
+        print("ERROR: No version found in package.json", file=sys.stderr)
+        sys.exit(1)
+    return version
+
+
+def get_npm_version() -> str | None:
+    req = urllib.request.Request(NPM_REGISTRY_URL, headers={"Accept": "application/json"})
+    try:
+        with urllib.request.urlopen(req, timeout=10) as resp:
+            data = json.loads(resp.read())
+            return data.get("dist-tags", {}).get("latest")
+    except Exception:
+        return None
+
+
+def git(*args: str) -> str:
+    result = subprocess.run(
+        ["git", *args],
+        capture_output=True,
+        text=True,
+        cwd=REPO_ROOT,
+    )
+    if result.returncode != 0:
+        print(f"ERROR: git {' '.join(args)} failed:\n{result.stderr.strip()}", file=sys.stderr)
+        sys.exit(1)
+    return result.stdout.strip()
+
+
+def local_tag_exists(tag: str) -> bool:
+    result = subprocess.run(
+        ["git", "tag", "-l", tag],
+        capture_output=True,
+        text=True,
+        cwd=REPO_ROOT,
+    )
+    return bool(result.stdout.strip())
+
+
+def remote_tag_exists(tag: str) -> bool:
+    result = subprocess.run(
+        ["git", "ls-remote", "--tags", "origin", f"refs/tags/{tag}"],
+        capture_output=True,
+        text=True,
+        cwd=REPO_ROOT,
+    )
+    return bool(result.stdout.strip())
+
+
+def delete_local_tag(tag: str) -> None:
+    subprocess.run(
+        ["git", "tag", "-d", tag],
+        capture_output=True,
+        cwd=REPO_ROOT,
+    )
+
+
+def check_tool(name: str) -> None:
+    result = subprocess.run(["which", name], capture_output=True)
+    if result.returncode != 0:
+        print(f"ERROR: {name} not found on PATH", file=sys.stderr)
+        sys.exit(1)
+
+
+def run_step(description: str, args: list[str]) -> None:
+    print(f"\n{description}...", flush=True)
+    result = subprocess.run(args, cwd=REPO_ROOT)
+    if result.returncode != 0:
+        print(f"\nERROR: {description} failed (exit {result.returncode})", file=sys.stderr)
+        sys.exit(1)
+
+
+def main() -> None:
+    push = "--push" in sys.argv
+
+    version = get_version()
+    tag = f"v{version}"
+    print(f"package.json version: {version}")
+    print(f"Git tag:              {tag}")
+
+    # Check npm for version bump
+    published = get_npm_version()
+    if published:
+        print(f"npm latest version:   {published}")
+        if published == version:
+            print(f"\nERROR: Version {version} is already published on npm.", file=sys.stderr)
+            print("Bump the version in package.json before releasing.", file=sys.stderr)
+            sys.exit(1)
+    else:
+        print("npm latest version:   (not found or not published yet)")
+
+    # Check git tag doesn't already exist
+    if remote_tag_exists(tag):
+        print(f"\nERROR: Git tag {tag} already exists on origin.", file=sys.stderr)
+        print("Bump the version in package.json or delete the remote tag first.", file=sys.stderr)
+        sys.exit(1)
+
+    if local_tag_exists(tag):
+        print(f"Local tag {tag} exists but not on origin — deleting stale local tag.")
+        delete_local_tag(tag)
+
+    # Check working tree is clean
+    status = git("status", "--porcelain")
+    if status:
+        print(f"\nERROR: Working tree is not clean:\n{status}", file=sys.stderr)
+        print("Commit or stash changes before releasing.", file=sys.stderr)
+        sys.exit(1)
+
+    # Check required tools
+    check_tool("node")
+    check_tool("npm")
+    check_tool("wasm-pack")
+
+    if not push:
+        print(f"\nDry run: would build, test, and publish {version} to npm")
+        print(f"         would create and push tag {tag}")
+        print("Run with --push to execute.")
+        return
+
+    # Build WASM
+    run_step("Building WASM", ["npm", "run", "build:wasm"])
+
+    # Run tests
+    run_step("Running tests", ["npm", "test"])
+
+    # Build dist
+    run_step("Building dist", ["npm", "run", "build"])
+
+    # Publish to npm
+    print("\nPublishing to npm...", flush=True)
+    result = subprocess.run(
+        ["npm", "publish", "--access", "public"],
+        cwd=REPO_ROOT,
+    )
+    if result.returncode != 0:
+        print(f"\nERROR: npm publish failed (exit {result.returncode})", file=sys.stderr)
+        sys.exit(1)
+
+    # Create and push git tag
+    print(f"\nCreating tag {tag}...", flush=True)
+    result = subprocess.run(
+        ["git", "tag", "-a", tag, "-m", f"release: {version}"],
+        cwd=REPO_ROOT,
+        env={**__import__("os").environ, "GIT_EDITOR": "true"},
+    )
+    if result.returncode != 0:
+        print(f"\nWARNING: git tag failed (exit {result.returncode})", file=sys.stderr)
+    else:
+        print(f"Pushing tag {tag} to origin...", flush=True)
+        result = subprocess.run(
+            ["git", "push", "--no-verify", "origin", tag],
+            cwd=REPO_ROOT,
+        )
+        if result.returncode != 0:
+            print(f"\nWARNING: Failed to push tag {tag}", file=sys.stderr)
+
+    print(f"\nDone. Published auths-verify@{version} to npm.")
+    print(f"  https://www.npmjs.com/package/auths-verify")
+
+
+if __name__ == "__main__":
+    main()

tests/resolvers/detect.test.ts

@@ -3,7 +3,7 @@ import { detectForge } from '../../src/resolvers/detect';
 
 describe('detectForge', () => {
   it('should detect GitHub repos', () => {
-    const config = detectForge('https://github.com/bordumb/auths');
+    const config = detectForge('https://github.com/auths-dev/auths');
     expect(config).toEqual({
       type: 'github',
       baseUrl: 'https://api.github.com',
@@ -33,13 +33,13 @@ describe('detectForge', () => {
   });
 
   it('should strip .git suffix', () => {
-    const config = detectForge('https://github.com/bordumb/auths.git');
+    const config = detectForge('https://github.com/auths-dev/auths.git');
     expect(config).not.toBeNull();
     expect(config!.repo).toBe('auths');
   });
 
   it('should strip trailing slash', () => {
-    const config = detectForge('https://github.com/bordumb/auths/');
+    const config = detectForge('https://github.com/auths-dev/auths/');
     expect(config).not.toBeNull();
     expect(config!.repo).toBe('auths');
   });
@@ -54,7 +54,7 @@ describe('detectForge', () => {
   });
 
   it('should use forgeHint to override detection', () => {
-    const config = detectForge('https://github.com/bordumb/auths', 'gitea');
+    const config = detectForge('https://github.com/auths-dev/auths', 'gitea');
     expect(config).not.toBeNull();
     expect(config!.type).toBe('gitea');
     expect(config!.baseUrl).toBe('https://github.com');
@@ -68,7 +68,7 @@ describe('detectForge', () => {
   });
 
   it('should handle URLs with extra path segments', () => {
-    const config = detectForge('https://github.com/bordumb/auths/tree/main');
+    const config = detectForge('https://github.com/auths-dev/auths/tree/main');
     expect(config).not.toBeNull();
     expect(config!.owner).toBe('bordumb');
     expect(config!.repo).toBe('auths');