更换各个工具链 (#476)

* chore: 将 pnpm 更换为 bun

* chore: 将打包工具从 vite 更换为 tsdown

* chore: 更换为预览版 tsgo 编译器

* fix: 删除不需要的包

* chore: 更新 TS 配置

* chore: 简化 files 配置

* ci: 允许 publish-libs dry-run 在非 main 运行

* docs: 修复 typedoc 自动引入 node 类型导致报错

* chore: 移除 core Canvas 渲染器

* chore: core 启用 isolatedDeclarations

* fix: 修复 core isolatedDeclarations 若干错误

* fix: 移除 react-full 中的 canvas 引擎配置

* chore: 移除 canvas 渲染器发布计划

* ci: PR 检查工作流移除 node

* ci: 文档构建工作流移除 node

* fix: 修正 glsl 和 svg 的导入

* fix: 修正 react-full 构建

* refactor: 将 playground 从 react-full 中抽离

* ci: 更新工作流依赖版本

* ci: 迁移发布工作流适配

---------

Co-authored-by: Linho <linho1219@outlook.com>

Author: apoint123

.github/scripts/ensure-release-plans-exist.sh

@@ -0,0 +1,12 @@
+#!/usr/bin/env bash
+set -euo pipefail
+
+shopt -s nullglob
+plans=(.nx/version-plans/*.md)
+
+if [ ${#plans[@]} -eq 0 ]; then
+  echo "No release plans were found in .nx/version-plans."
+  exit 1
+fi
+
+echo "Found ${#plans[@]} release plan(s)."

.github/scripts/force-nx-publish-package-manager-npm.cjs

@@ -0,0 +1,13 @@
+#!/usr/bin/env node
+
+const fs = require("node:fs");
+const path = require("node:path");
+
+const nxJsonPath = path.resolve(process.cwd(), "nx.json");
+
+const nxJson = JSON.parse(fs.readFileSync(nxJsonPath, "utf8"));
+nxJson.cli = { ...(nxJson.cli || {}), packageManager: "npm" };
+fs.writeFileSync(nxJsonPath, `${JSON.stringify(nxJson, null, 2)}\n`);
+
+const { detectPackageManager } = require("nx/src/utils/package-manager");
+console.log(`Nx detected package manager: ${detectPackageManager()}`);

.github/scripts/verify-trusted-publishing-runtime.mjs

@@ -0,0 +1,25 @@
+import { execSync } from "node:child_process";
+
+console.log(process.version);
+console.log(execSync("npm --version", { encoding: "utf8" }).trim());
+
+const [nodeMajor, nodeMinor] = process.versions.node.split(".").map(Number);
+if (nodeMajor < 22 || (nodeMajor === 22 && nodeMinor < 14)) {
+	throw new Error("Node.js 22.14.0+ is required for trusted publishing.");
+}
+
+const [npmMajor, npmMinor, npmPatch] = execSync("npm --version", {
+	encoding: "utf8",
+})
+	.trim()
+	.split(".")
+	.map(Number);
+
+const npmOk =
+	npmMajor > 11 ||
+	(npmMajor === 11 && npmMinor > 5) ||
+	(npmMajor === 11 && npmMinor === 5 && npmPatch >= 1);
+
+if (!npmOk) {
+	throw new Error("npm 11.5.1+ is required for trusted publishing.");
+}

.github/workflows/deploy-docs.yaml

@@ -0,0 +1,56 @@
+name: "Deploy Site"
+
+on:
+  push:
+    branches:
+      - main
+      - dev
+  workflow_dispatch:
+
+permissions:
+  contents: read
+  pages: write
+  id-token: write
+
+concurrency:
+  group: deploy-site
+  cancel-in-progress: true
+
+jobs:
+  build-docs:
+    name: Build docs
+    runs-on: ubuntu-latest
+    environment:
+      name: github-pages
+    steps:
+      - uses: actions/checkout@v6
+        name: Checkout repository
+
+      - name: Setup Github Pages
+        uses: actions/configure-pages@v6
+
+      - name: Setup Bun
+        uses: oven-sh/setup-bun@v2
+
+      - name: Install dependencies
+        run: bun install
+
+      - name: Build docs
+        run: bun nx build docs
+
+      - name: Upload artifact
+        uses: actions/upload-pages-artifact@v5
+        with:
+          path: packages/docs/dist
+
+  deploy-docs:
+    name: Deploy site
+    runs-on: ubuntu-latest
+    needs: build-docs
+    environment:
+      name: github-pages
+      url: ${{ steps.deployment.outputs.page_url }}
+    steps:
+      - name: Deploy to Github Pages
+        id: deployment
+        uses: actions/deploy-pages@v5

.github/workflows/deploy-site.yaml

@@ -28,48 +28,36 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0
 
-      - name: Setup Node.js
-        uses: actions/setup-node@v4
-        with:
-          node-version: lts/*
+      - name: Setup Bun
+        uses: oven-sh/setup-bun@v2
 
       - name: Decide whether a release plan is required
         id: release-requirements
-        run: node .github/scripts/check-release-requirements.mjs
+        run: bun .github/scripts/check-release-requirements.mjs
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
           GITHUB_REPOSITORY: ${{ github.repository }}
           PR_NUMBER: ${{ github.event.pull_request.number }}
 
-      - name: Setup pnpm
-        uses: pnpm/action-setup@v4
-
-      - name: Setup cached Node.js for pnpm
-        if: steps.release-requirements.outputs.requires_release_plan == 'true'
-        uses: actions/setup-node@v4
-        with:
-          node-version: lts/*
-          cache: pnpm
-
       - name: Install dependencies
         if: steps.release-requirements.outputs.requires_release_plan == 'true'
-        run: pnpm install --frozen-lockfile --ignore-scripts
+        run: bun install --frozen-lockfile
 
       - name: Set Nx SHAs
         if: steps.release-requirements.outputs.requires_release_plan == 'true'
-        uses: nrwl/nx-set-shas@v4
+        uses: nrwl/nx-set-shas@v5
 
       - name: Keep only release plans from this PR
         if: steps.release-requirements.outputs.requires_release_plan == 'true'
         run: bash .github/scripts/keep-pr-release-plans.sh "${{ env.NX_BASE }}" "${{ env.NX_HEAD }}"
 
       - name: Check release plans
         if: steps.release-requirements.outputs.requires_release_plan == 'true'
-        run: pnpm release:plan:check --base="${{ env.NX_BASE }}" --head="${{ env.NX_HEAD }}"
+        run: bun run release:plan:check --base="${{ env.NX_BASE }}" --head="${{ env.NX_HEAD }}"
 
   build-libraries:
     name: Build libs
@@ -78,21 +66,15 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0
 
-      - name: Setup pnpm
-        uses: pnpm/action-setup@v4
-
-      - name: Setup Node.js
-        uses: actions/setup-node@v4
-        with:
-          node-version: lts/*
-          cache: pnpm
+      - name: Setup Bun
+        uses: oven-sh/setup-bun@v2
 
       - name: Install dependencies
-        run: pnpm install --frozen-lockfile --ignore-scripts
+        run: bun install --frozen-lockfile
 
       - name: Install Rust toolchain
         uses: dtolnay/rust-toolchain@v1
@@ -106,6 +88,6 @@ jobs:
           version: v0.13.1
 
       - name: Build publishable libraries
-        run: pnpm ci:build:libs
+        run: bun run ci:build:libs
         env:
           AMLL_GITHUB_IS_ACTION: true

.github/workflows/pr-release-check.yaml

@@ -26,37 +26,32 @@ jobs:
     runs-on: ubuntu-latest
 
     steps:
-      - name: Ensure this workflow runs from main
-        if: github.ref_name != 'main'
+      - name: Ensure publish runs from main
+        if: github.event.inputs.mode == 'publish' && github.ref_name != 'main'
         run: |
-          echo "This workflow must be dispatched from the main branch."
+          echo "Publishing must be dispatched from the main branch. Use dry-run mode to test from other branches."
           exit 1
 
       - name: Checkout repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
         with:
           fetch-depth: 0
           ssh-key: ${{ secrets.RELEASE_DEPLOY_KEY }}
 
-      - name: Setup pnpm
-        uses: pnpm/action-setup@v4
+      - name: Setup Bun
+        uses: oven-sh/setup-bun@v2
 
       - name: Setup Node.js
         uses: actions/setup-node@v6
         with:
-          node-version: '24'
-          cache: pnpm
+          node-version: "24"
           registry-url: https://registry.npmjs.org
 
       - name: Verify trusted publishing runtime requirements
-        run: |
-          node --version
-          npm --version
-          node -e "const [major, minor] = process.versions.node.split('.').map(Number); if (major < 22 || (major === 22 && minor < 14)) process.exit(1)"
-          node -e "const version = require('child_process').execSync('npm --version', { encoding: 'utf8' }).trim().split('.').map(Number); if (version[0] < 11 || (version[0] === 11 && version[1] < 5) || (version[0] === 11 && version[1] === 5 && version[2] < 1)) process.exit(1)"
+        run: node .github/scripts/verify-trusted-publishing-runtime.mjs
 
       - name: Install dependencies
-        run: pnpm install --frozen-lockfile --ignore-scripts
+        run: bun install --frozen-lockfile
 
       - name: Install Rust toolchain
         uses: dtolnay/rust-toolchain@v1
@@ -75,29 +70,28 @@ jobs:
           git config user.email "41898282+github-actions[bot]@users.noreply.github.com"
 
       - name: Ensure release plans exist
-        run: |
-          shopt -s nullglob
-          plans=(.nx/version-plans/*.md)
-          if [ ${#plans[@]} -eq 0 ]; then
-            echo "No release plans were found in .nx/version-plans."
-            exit 1
-          fi
+        run: bash .github/scripts/ensure-release-plans-exist.sh
 
       - name: Dry-run release
-        run: pnpm nx release --dry-run --preid alpha
+        if: github.event.inputs.mode == 'dry-run'
+        run: npx nx release --dry-run --preid alpha
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Create release commit and tags
         if: github.event.inputs.mode == 'publish'
-        run: pnpm nx release --skip-publish --preid alpha
+        run: npx nx release --skip-publish --preid alpha
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
+      - name: Force Nx publish executor to npm for OIDC
+        if: github.event.inputs.mode == 'publish'
+        run: node .github/scripts/force-nx-publish-package-manager-npm.cjs
+
       - name: Push release commit and tags
         if: github.event.inputs.mode == 'publish'
         run: git push origin HEAD:main --follow-tags
 
       - name: Publish packages to npm
         if: github.event.inputs.mode == 'publish'
-        run: pnpm nx release publish
+        run: npx nx release publish

.github/workflows/publish-libs.yaml

@@ -19,3 +19,4 @@ target/
 .vscode/
 *.tsbuildinfo
 .million/
+**/dist