From c4983d31c0243b7ee2893b4d02a13c104e1a6be2 Mon Sep 17 00:00:00 2001 From: Michal Klein <46717574+michalk8@users.noreply.github.com> Date: Wed, 8 Nov 2023 23:36:28 +0100 Subject: [PATCH 1/2] Use new PyPI trusted publisher management --- .github/workflows/deployment.yml | 6 ++---- 1 file changed, 2 insertions(+), 4 deletions(-) diff --git a/.github/workflows/deployment.yml b/.github/workflows/deployment.yml index 614182c66..3d974108f 100644 --- a/.github/workflows/deployment.yml +++ b/.github/workflows/deployment.yml @@ -1,11 +1,10 @@ name: Deployment -on: - push: - tags: [v*] jobs: deploy: runs-on: ubuntu-latest + permissions: + id-token: write steps: - uses: actions/checkout@v3 - name: Set up Python 3.10 @@ -24,7 +23,6 @@ jobs: - name: Publish package uses: pypa/gh-action-pypi-publish@release/v1 with: - password: ${{ secrets.PYPI_TOKEN }} skip-existing: true verify-metadata: true verbose: true From 57a002f53be59e48da93f3a0cbec956a5a27d393 Mon Sep 17 00:00:00 2001 From: Michal Klein <46717574+michalk8@users.noreply.github.com> Date: Wed, 8 Nov 2023 23:43:20 +0100 Subject: [PATCH 2/2] Add forgotten on --- .github/workflows/deployment.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.github/workflows/deployment.yml b/.github/workflows/deployment.yml index 3d974108f..2c5ac35a1 100644 --- a/.github/workflows/deployment.yml +++ b/.github/workflows/deployment.yml @@ -1,10 +1,14 @@ name: Deployment +on: + push: + tags: [v*] jobs: deploy: runs-on: ubuntu-latest permissions: id-token: write + environment: deployment steps: - uses: actions/checkout@v3 - name: Set up Python 3.10