Excel MCP Server (uses Excel App, 100% Compatibility)

# VS Code Marketplace Publishing Setup This document explains how to set up automated publishing to the VS Code Marketplace. ## Required GitHub Secret The release workflow requires the following secret to be configured in your GitHub repository: ### VSCE_TOKEN (VS Code Marketplace) **Purpose:** Allows automated publishing to the Visual Studio Code Marketplace **How to create:** 1. **Create a Microsoft Account** (if you don't have one) - Go to https://login.live.com/ 2. **Create an Azure DevOps organization** - Go to https://dev.azure.com/ - Sign in with your Microsoft account - Create a new organization (if needed) 3. **Create a Personal Access Token (PAT)** - In Azure DevOps, go to User Settings (top right) → Personal Access Tokens - Click "New Token" - Name: `VS Code Marketplace Publishing` - Organization: Select your organization - Expiration: Custom defined (e.g., 1 year) - Scopes: Select "Custom defined" → Check "Marketplace (Manage)" - Click "Create" - **Copy the token** (you won't see it again!) 4. **Create a publisher account** (if you don't have one) - Go to https://marketplace.visualstudio.com/manage - Click "Create publisher" - Publisher ID: Should match `package.json` publisher field (e.g., `sbroenne`) - Display name, description, etc. 5. **Add to GitHub Secrets** - Go to your GitHub repo → Settings → Secrets and variables → Actions - Click "New repository secret" - Name: `VSCE_TOKEN` - Value: Paste your PAT from step 3 - Click "Add secret" ## Workflow Behavior When you push a tag matching `vscode-v*` (e.g., `vscode-v1.0.0`): 1. **Extracts version from tag** and updates `package.json` 2. **Updates CHANGELOG.md** with release date 3. **Builds the extension** from source 4. **Packages as VSIX** file 5. **Publishes to VS Code Marketplace** (if `VSCE_TOKEN` is configured) 6. **Creates GitHub Release** with VSIX attachment and publishing status ### Publishing is Optional - If the token is not configured, marketplace publishing will be skipped (uses `continue-on-error: true`) - The GitHub release will still be created with the VSIX file - Users can always install from the VSIX file manually ### Publishing Status The GitHub release notes will show: ``` ### Publishing Status - ✅ Published to VS Code Marketplace ``` Or if token is not configured: ``` ### Publishing Status - ❌ Not published to VS Code Marketplace ``` ## Testing the Workflow To test the release workflow: 1. Ensure the `VSCE_TOKEN` secret is configured 2. Push a test tag: ```bash git tag vscode-v0.0.1-test git push origin vscode-v0.0.1-test ``` 3. Go to GitHub Actions and watch the workflow run 4. Check that the release was created and marketplace publishing succeeded ## Troubleshooting ### "Failed to publish to VS Code Marketplace" - **Check PAT permissions**: Ensure your Azure DevOps PAT has "Marketplace (Manage)" scope - **Check PAT expiration**: Tokens expire - you may need to regenerate - **Check publisher ownership**: Ensure your Azure DevOps account owns the publisher - **Check package.json**: Publisher field must match your marketplace publisher ID ### "Workflow runs but marketplace shows old version" - Marketplace updates can take 5-15 minutes to appear - Clear browser cache or use incognito mode - Check marketplace directly: https://marketplace.visualstudio.com/items?itemName=PUBLISHER.EXTENSION ## Manual Publishing (Fallback) If automated publishing fails, you can publish manually: ```bash cd vscode-extension npm install -g @vscode/vsce vsce login <publisher-name> vsce publish ``` ## Security Best Practices 1. **Rotate tokens regularly** (every 6-12 months) 2. **Use minimal permissions** (only Marketplace Manage, not all scopes) 3. **Monitor secret usage** in GitHub Actions logs 4. **Revoke tokens immediately** if compromised 5. **Don't share tokens** via email, chat, or public channels ## References - [VS Code Publishing Documentation](https://code.visualstudio.com/api/working-with-extensions/publishing-extension) - [HaaLeo/publish-vscode-extension Action](https://github.com/marketplace/actions/publish-vs-code-extension) - [Azure DevOps PAT Documentation](https://learn.microsoft.com/en-us/azure/devops/organizations/accounts/use-personal-access-tokens-to-authenticate)