Closed traversaro closed 3 days ago
Sorry to bother you again @fishbotics, if you want to add me (https://pypi.org/user/traversaro/) as PyPI mantainer of urchin
I can fix this, otherwise you can either pass to use "Trusted Publishers" for publishing packages to PyPI or enable two-factor authentication on PyPI.
Anyhow, no hurry, the main way with which my users install urchin is via conda-forge, so with a tag I can already package urchin 0.0.29 there, thanks!
Ah, ok! I just added you as a maintainer for the project on PyPi. If you’d prefer to be an Owner, I’m happy to do that as well.
On Oct 25, 2024, at 4:50 AM, Silvio Traversaro @.***> wrote:
Sorry to bother you again @fishbotics https://github.com/fishbotics, if you want to add me (https://pypi.org/user/traversaro/) as PyPI mantainer of urchin I can fix this, otherwise you can either pass to use "Trusted Publishers" for publishing packages to PyPI or enable two-factor authentication on PyPI.
Anyhow, no hurry, the main way with which my users install urchin is via conda-forge, so with a tag I can already package urchin 0.0.29 there, thanks!
— Reply to this email directly, view it on GitHub https://github.com/fishbotics/urchin/issues/24#issuecomment-2437581036, or unsubscribe https://github.com/notifications/unsubscribe-auth/AK4QKXU2HF3IBYYPMMJIDBLZ5IWBFAVCNFSM6AAAAABQTDLGM6VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDIMZXGU4DCMBTGY. You are receiving this because you were mentioned.
Thanks! Let's see if maintainer is enough to enable Trusted Publisher (see https://docs.pypi.org/trusted-publishers/using-a-publisher), that should be more robust then using tokens.
Thanks! Let's see if maintainer is enough to enable Trusted Publisher (see https://docs.pypi.org/trusted-publishers/using-a-publisher), that should be more robust then using tokens.
Yes, apparently do enable Trusted Publishers I need to be Owner on PyPI. I tried also to change the upload token in the repo with one generated by me (that I have double factor authentication enabled), but I can't as I only have write permissions (not admin) in this repo. So I guess to unblock the situation I need either Owner permission on PyPI or Admin permissions in the GitHub repo, sorry for the trouble!
OK I made you an owner. Let me know if that works! Thanks :)
On Oct 27, 2024, at 10:48 AM, Silvio Traversaro @.***> wrote:
Thanks! Let's see if maintainer is enough to enable Trusted Publisher (see https://docs.pypi.org/trusted-publishers/using-a-publisher), that should be more robust then using tokens.
Yes, apparently do enable Trusted Publishers I need to be Owner on PyPI. I tried also to change the upload token in the repo with one generated by me (that I have double factor authentication enabled), but I can't as I only have write permissions (not admin) in this repo. So I guess to unblock the situation I need either Owner permission on PyPI or Admin permissions in the GitHub repo, sorry for the trouble!
— Reply to this email directly, view it on GitHub https://github.com/fishbotics/urchin/issues/24#issuecomment-2440115385, or unsubscribe https://github.com/notifications/unsubscribe-auth/AK4QKXUTM26WCDQWEPMO6PDZ5UKPPAVCNFSM6AAAAABQTDLGM6VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDINBQGEYTKMZYGU. You are receiving this because you were mentioned.
Actually I just noticed that you re-started the job in https://github.com/fishbotics/urchin/actions/runs/11517565060 and it was successful now (probably a change in token or similar)? So the issue is fixed, thanks!
I tagged 0.0.29 after https://github.com/fishbotics/urchin/pull/23, and now the PyPI upload job is failing with error (https://github.com/fishbotics/urchin/actions/runs/11517565060):