From 72f0377c2232cbf8a9852966d23ac04b9d143231 Mon Sep 17 00:00:00 2001 From: ekoby Date: Fri, 22 Aug 2025 11:57:51 -0400 Subject: [PATCH 1/3] no longer need user/password auth with TestPyPI --- .github/workflows/wheels.yml | 2 -- 1 file changed, 2 deletions(-) diff --git a/.github/workflows/wheels.yml b/.github/workflows/wheels.yml index dc6b3fe..4fe8565 100644 --- a/.github/workflows/wheels.yml +++ b/.github/workflows/wheels.yml @@ -74,8 +74,6 @@ jobs: - name: Publish wheels (TestPYPI) uses: pypa/gh-action-pypi-publish@release/v1 with: - user: __token__ - password: ${{ secrets.TEST_PYPI_API_TOKEN }} repository-url: https://test.pypi.org/legacy/ packages-dir: dist skip-existing: true From bd05e13ffb8a1194f2a9a825d5a59c6e33409736 Mon Sep 17 00:00:00 2001 From: ekoby Date: Fri, 22 Aug 2025 12:01:08 -0400 Subject: [PATCH 2/3] configure id-token permission --- .github/workflows/wheels.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/wheels.yml b/.github/workflows/wheels.yml index 4fe8565..02cdc99 100644 --- a/.github/workflows/wheels.yml +++ b/.github/workflows/wheels.yml @@ -5,6 +5,7 @@ on: permissions: contents: read + id-token: write concurrency: group: 'build-wheels-${{ github.ref }}' From 31da6584a4db1d470351ac0a4dc499b50b35c5df Mon Sep 17 00:00:00 2001 From: ekoby Date: Fri, 22 Aug 2025 12:11:47 -0400 Subject: [PATCH 3/3] no longer need user/password auth with PyPI trusted publishing --- .github/workflows/wheels.yml | 2 -- 1 file changed, 2 deletions(-) diff --git a/.github/workflows/wheels.yml b/.github/workflows/wheels.yml index 02cdc99..c5c8b4b 100644 --- a/.github/workflows/wheels.yml +++ b/.github/workflows/wheels.yml @@ -84,7 +84,5 @@ jobs: if: github.event_name == 'push' && startsWith(github.ref, 'refs/tags') uses: pypa/gh-action-pypi-publish@release/v1 with: - user: __token__ - password: ${{ secrets.PYPI_API_TOKEN }} packages-dir: dist verbose: true \ No newline at end of file