Skip to content

CI: Use trusted publishing with release workflow #629

New issue
New issue
Open
Open
CI: Use trusted publishing with release workflow#629
@amotl

Description

@amotl
amotl
opened on Feb 11, 2026

About

The automatic release workflow works well, but the report shows it can be improved.

Warning: The workflow was run with the 'attestations: true' input, but an explicit password was also set, disabling Trusted Publishing. As a result, the attestations input is ignored.
Warning: Trusted Publishers allows publishing packages to PyPI from automated environments like GitHub Actions without needing to use username/password combinations or API tokens to authenticate with PyPI. Read more: https://docs.pypi.org/trusted-publishers
Warning: A new Trusted Publisher for the currently running publishing workflow can be created by accessing the following link(s) while logged-in as an owner of the package(s):

-- https://github.com/crate/cratedb-toolkit/actions/runs/21890606665
-- https://github.com/crate/cratedb-toolkit/actions/runs/21890606665/job/63195397630#step:6:168

References

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions