Use trusted publishing token for pypi (#6545)

This commit is contained in:
Jesse Hills 2024-04-17 16:55:13 +12:00 committed by GitHub
parent ca5d38f413
commit 83feae4eb2
No known key found for this signature in database
GPG key ID: B5690EEEBB952194

View file

@ -47,6 +47,9 @@ jobs:
name: Build and publish to PyPi name: Build and publish to PyPi
if: github.repository == 'esphome/esphome' && github.event_name == 'release' if: github.repository == 'esphome/esphome' && github.event_name == 'release'
runs-on: ubuntu-latest runs-on: ubuntu-latest
permissions:
contents: read
id-token: write
steps: steps:
- uses: actions/checkout@v4.1.1 - uses: actions/checkout@v4.1.1
- name: Set up Python - name: Set up Python
@ -56,16 +59,11 @@ jobs:
- name: Set up python environment - name: Set up python environment
env: env:
ESPHOME_NO_VENV: 1 ESPHOME_NO_VENV: 1
run: | run: script/setup
script/setup
pip install twine
- name: Build - name: Build
run: python setup.py sdist bdist_wheel run: python setup.py sdist bdist_wheel
- name: Upload - name: Publish
env: uses: pypa/gh-action-pypi-publish@v1.8.14
TWINE_USERNAME: __token__
TWINE_PASSWORD: ${{ secrets.PYPI_TOKEN }}
run: twine upload dist/*
deploy-docker: deploy-docker:
name: Build ESPHome ${{ matrix.platform }} name: Build ESPHome ${{ matrix.platform }}