lite-bootstrap 1.2.3 — release pipeline on PyPI Trusted Publishing
No library changes. The package is identical to 1.2.2; this release exercises the new publish path end-to-end.
CI
- Releases now authenticate to PyPI via Trusted Publishing (OIDC) instead of a long-lived
PYPI_TOKENsecret.uv publishauto-detects the GitHub Actions id-token; the release job runs under apypienvironment that scopes the trusted publisher (#145).
Downstream
No action required. Nothing about the installed package changes.