Add trusted publishing options to generate-ci#3176
Merged
Conversation
Add a note that `Changelog.md` is generated from git history by `git-cliff` (see `cliff.toml`) and should not be edited by hand, to prevent agents and contributors from accidentally maintaining it manually.
Add two new fields to `[tool.maturin.generate-ci.github]`: - `trusted-publishing` (bool): when `true`, the generated release workflow runs `uv publish --trusted-publishing always` and omits the `UV_PUBLISH_TOKEN` env var. This makes the workflow rely on PyPI's [trusted publishing][1] (OpenID Connect) instead of an API token, removing the need to manage a long-lived secret. - `publishing-environment` (string): when set, adds an `environment:` key to the release job. This is optional but recommended together with trusted publishing so that releases must go through a configured GitHub Actions environment matching the one declared in PyPI's trusted publisher settings. Closes PyO3#3166. [1]: https://docs.pypi.org/trusted-publishers/
messense
force-pushed
the
feat/generate-ci-trusted-publishing
branch
from
f1e96cb to
761d2c2
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Closes #3166.