To meet security compliance, we need to change our current release procedure which is using the PyPI token we stored in GH secrets and do poetry publish.
The new approach is:
We store our Tokens in SecretsManager in our AWS account
Configure GH Action to get our AWS account credential
Retrieve PyPI Token from SecretsManager
Poetry Publish
By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.
Issue #, if available:
Description of changes:
To meet security compliance, we need to change our current release procedure which is using the PyPI token we stored in GH secrets and do poetry publish.
The new approach is:
By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.