Add info about Trusted Publishers

DHI · Oct 4, 2024 · de8e1d8 · de8e1d8
1 parent eb318fb
commit de8e1d8
Showing 1 changed file with 7 additions and 2 deletions.
diff --git a/07_packaging.qmd b/07_packaging.qmd
@@ -292,12 +292,15 @@ To use secrets as environment variables in GitHub Actions, add them to the `env`
 
 ```yaml
 env:
-  TWINE_USERNAME: ${{ secrets.PYPI_USERNAME }}
-  TWINE_PASSWORD: ${{ secrets.PYPI_PASSWORD }}
+  USERNAME: ${{ secrets.USERNAME }}
+  PASSWORD: ${{ secrets.PASSWORD }}
 ```
 
 ## GitHub Actions {.smaller}
 
+* Modern publishing uses Trusted Publishers.
+* Avoids managing secrets in the repository.
+
 ```{.yaml filename=.github/workflows/python_publish.yml code-line-numbers="|2-4|18-19|20-21"}
 name: Publish Python Package
 on:
@@ -330,6 +333,8 @@ jobs:
 
 . . .
 
+Example:
+
 ```{.yaml filename=.github/workflows/python_publish.yml code-line-numbers="|3-4|5-6"}
     - name: Build package
       run: python -m build