diff options
author | Florian Bruhin <me@the-compiler.org> | 2023-08-16 19:20:27 +0200 |
---|---|---|
committer | Florian Bruhin <me@the-compiler.org> | 2023-08-17 12:39:00 +0200 |
commit | a59bf7bc5bc9ec863fd359be453e326c727008ce (patch) | |
tree | c4d6581c08b0df9e3622f4ecdc399f2149c59fe3 | |
parent | 0e07d3b7b600ae6d1757e6f5fd22b104ec30aacb (diff) | |
download | qutebrowser-a59bf7bc5bc9ec863fd359be453e326c727008ce.tar.gz qutebrowser-a59bf7bc5bc9ec863fd359be453e326c727008ce.zip |
ci: Set twine PyPI token
-rw-r--r-- | .github/workflows/release.yml | 8 | ||||
-rwxr-xr-x | scripts/dev/build_release.py | 3 |
2 files changed, 10 insertions, 1 deletions
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 1323ce605..288186eb1 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -149,8 +149,14 @@ jobs: run: | python -m pip install -U pip python -m pip install -U -r misc/requirements/requirements-tox.txt + # FIXME consider switching to trusted publishers: + # https://blog.pypi.org/posts/2023-04-20-introducing-trusted-publishers/ - name: Build and upload release - run: "tox -e build-release -- --upload --no-confirm --experimental --gh-token ${{ secrets.GITHUB_TOKEN }}" + run: "tox -e build-release -- --upload --no-confirm --experimental" + env: + TWINE_USERNAME: __token__ + TWINE_PASSWORD: ${{ secrets.QUTEBROWSER_BOT_TEST_PYPI_TOKEN }} # FIXME use real token + GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} finalize: runs-on: ubuntu-20.04 timeout-minutes: 5 diff --git a/scripts/dev/build_release.py b/scripts/dev/build_release.py index acbe31507..fe2ec16c3 100755 --- a/scripts/dev/build_release.py +++ b/scripts/dev/build_release.py @@ -539,6 +539,9 @@ def read_github_token( if arg_token is not None: return arg_token + if "GITHUB_TOKEN" in os.environ: + return os.environ["GITHUB_TOKEN"] + token_path = pathlib.Path.home() / '.gh_token' if not token_path.exists(): if optional: |