From a374288ceaac18845b893f4ee1ac93f1b84df35c Mon Sep 17 00:00:00 2001 From: Debanjum Singh Solanky Date: Thu, 28 Mar 2024 22:58:36 +0530 Subject: [PATCH] Use OIDC TrustedPublisher to publish khoj python package to PyPi --- .github/workflows/pypi.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/pypi.yml b/.github/workflows/pypi.yml index 5c8084ab..ea6f6242 100644 --- a/.github/workflows/pypi.yml +++ b/.github/workflows/pypi.yml @@ -22,6 +22,8 @@ jobs: publish: name: Publish Python Package to PyPI runs-on: ubuntu-20.04 + permissions: + id-token: write steps: - uses: actions/checkout@v3 with: @@ -60,5 +62,3 @@ jobs: - name: 📦 Publish Python Package to PyPI if: startsWith(github.ref, 'refs/tags') || github.ref == 'refs/heads/master' uses: pypa/gh-action-pypi-publish@v1.8.14 - with: - password: ${{ secrets.PYPI_API_KEY }}