Skip to content

set up trusted publishing#65

Merged
eivindjahren merged 1 commit into
mainfrom
set_up_trusted_publishing
Jul 2, 2026
Merged

set up trusted publishing#65
eivindjahren merged 1 commit into
mainfrom
set_up_trusted_publishing

Conversation

@eivindjahren

Copy link
Copy Markdown
Collaborator

No description provided.

Copilot AI left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR updates the PyPI publish workflow to use PyPI “trusted publishing” via GitHub OIDC, replacing the use of a stored PyPI password secret.

Changes:

  • Add OIDC permissions (id-token: write) and bind publishing to the release environment.
  • Remove user/password inputs from pypa/gh-action-pypi-publish, relying on trusted publishing instead.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment on lines +52 to +54
permissions:
id-token: write
environment: release
@eivindjahren eivindjahren merged commit 8b1ee2c into main Jul 2, 2026
15 checks passed
@eivindjahren eivindjahren deleted the set_up_trusted_publishing branch July 2, 2026 07:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants