Skip to content

Automate Hardhat 2 release and harden the process against NPM attacks #7455

New issue
New issue
Open
Feature
Open
Automate Hardhat 2 release and harden the process against NPM attacks#7455
Feature
Labels
type:KREnd-to-end implementation of a KR
Milestone
Hardhat 3 GA Release
@michalbrabec

Description

@michalbrabec
michalbrabec
opened on Sep 18, 2025

The release of Hardhat 2 is still done from a local workstation instead of an automated pipeline or action. We must automate the process and migrate it to CI to minimise the effort needed to release new versions and reduce the risk of a compromised workstation compromising the release. Proof of presence or multi-sign might be needed to prevent NPM attacks.

Metadata

Metadata

Assignees

No one assigned

    Labels

    type:KREnd-to-end implementation of a KR

    Type

    Feature

    Projects

    Hardhat

    Status

    Backlog

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions