Merge pull request #29 from hamnis/dependabot/github_actions/actions/… #19
hamnispypi-build-n-publish.yml
on: push
linting
32s
build-and-publish
48s
Annotations
2 warnings and 1 notice
|
build-and-publish
Unexpected input(s) 'sign-artifacts', 'gpg-private-key', valid inputs are ['entryPoint', 'args', 'user', 'password', 'repository-url', 'repository_url', 'packages-dir', 'packages_dir', 'verify-metadata', 'verify_metadata', 'skip-existing', 'skip_existing', 'verbose', 'print-hash', 'print_hash']
|
|
Upgrade to Trusted Publishing
Trusted Publishers allows publishing packages to PyPI from automated environments like GitHub Actions without needing to use username/password combinations or API tokens to authenticate with PyPI. Read more: https://docs.pypi.org/trusted-publishers
|
|
build-and-publish
Using a user-provided API token for authentication against https://test.pypi.org/legacy/
|