Open woodruffw opened 3 months ago
I'm filing this for myself to work on 🙂
Per https://github.com/github/docs/pull/32146 and the earlier https://github.com/github/docs/pull/24772: PyPI now supports authentication via OIDC ("Trusted Publishing") and other official GitHub resources mostly refer to that authentication mechanism.
This workflow should be similarly updated to use Trusted Publishing instead of a manually configured API token.
This issue has become stale and will be closed automatically within a period of time. Sorry about that.
This is not stale.
I'm filing this for myself to work on 🙂
Per https://github.com/github/docs/pull/32146 and the earlier https://github.com/github/docs/pull/24772: PyPI now supports authentication via OIDC ("Trusted Publishing") and other official GitHub resources mostly refer to that authentication mechanism.
This workflow should be similarly updated to use Trusted Publishing instead of a manually configured API token.