fix(monorepo): npm provenance is not respected (#800)

* fix(monorepo): npm provenance is not respected

* chore: self mutation

Signed-off-by: github-actions <[email protected]>

---------

Signed-off-by: github-actions <[email protected]>
Co-authored-by: github-actions <[email protected]>

Author: mrgrain

src/yarn/typescript-workspace-release.ts

@@ -64,6 +64,7 @@ export class WorkspaceRelease extends Component {
         this.publisher.publishToNpm({
           registry: project.package.npmRegistry,
           npmTokenSecret: project.package.npmTokenSecret,
+          npmProvenance: project.package.npmProvenance,
         });
       }
     }

test/__snapshots__/cdklabs-monorepo.test.ts.snap

@@ -199,6 +199,25 @@ describe('CdkLabsMonorepo', () => {
           })]),
         }));
     });
+
+    test('will automatically enable npm release provenance', () => {
+      const one = new yarn.TypeScriptWorkspace({
+        parent,
+        name: '@cdklabs/one',
+        npmDistTag: 'foobar',
+      });
+
+      Testing.synth(parent);
+
+      expect(one.package.npmProvenance).toBe(true);
+      expect(parent.github?.tryFindWorkflow('release')?.getJob('cdklabs-one_release_npm'))
+        .toMatchObject(expect.objectContaining({
+          steps: expect.arrayContaining([expect.objectContaining({
+            name: 'Release',
+            env: expect.objectContaining({ NPM_CONFIG_PROVENANCE: 'true' }),
+          })]),
+        }));
+    });
   });
 
   describe('VSCode Workspace', () => {