Merge pull request #115 from mchrisgm/handler #64
mchrisgm
This run and associated checks have been archived and are scheduled for deletion.
Learn more about checks retention
publish.yml
on: push
Build distribution
15s
Sign the Python distribution with Sigstore and upload them to GitHub Release
21s
Annotations
3 warnings
|
attestations input ignored
The workflow was run with the 'attestations: true' input, but an explicit password was also set, disabling Trusted Publishing. As a result, the attestations input is ignored.
|
|
Upgrade to Trusted Publishing
Trusted Publishers allows publishing packages to PyPI from automated environments like GitHub Actions without needing to use username/password combinations or API tokens to authenticate with PyPI. Read more: https://docs.pypi.org/trusted-publishers
|
|
Create a Trusted Publisher
A new Trusted Publisher for the currently running publishing workflow can be created by accessing the following link(s) while logged-in as an owner of the package(s):
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
python-package-distributions
Expired
|
50.5 KB |
sha256:f3e2c3e5d4f9d2f1a687a550da465f8ff1695a2e2ad12bb6ff1c80a3250dbcdb
|
|