From 0fe3ca65d19ed76b7c5095cf2d915658d26b87fb Mon Sep 17 00:00:00 2001 From: "Michael R. Crusoe" Date: Mon, 9 Dec 2024 14:18:09 +0100 Subject: [PATCH] deployment to PyPI using the trusted publisher route --- .github/workflows/tag_to_publish.yml | 9 ++++----- 1 file changed, 4 insertions(+), 5 deletions(-) diff --git a/.github/workflows/tag_to_publish.yml b/.github/workflows/tag_to_publish.yml index ea52869..a3cd750 100644 --- a/.github/workflows/tag_to_publish.yml +++ b/.github/workflows/tag_to_publish.yml @@ -11,9 +11,10 @@ concurrency: jobs: release_to_pypi: name: cwl-utils release test - runs-on: ubuntu-24.04 - + environment: PyPI + permissions: + id-token: write steps: - uses: actions/checkout@v4 @@ -46,6 +47,4 @@ jobs: - name: Publish package uses: pypa/gh-action-pypi-publish@release/v1 with: - user: __token__ - password: ${{ secrets.PYPI_API_TOKEN }} - packages_dir: testenv2/src/cwl-utils/dist/ + packages-dir: testenv2/src/cwl-utils/dist/