From e44c7b519f7b4a81d578eddc0fa12e6463d45271 Mon Sep 17 00:00:00 2001 From: William Woodruff Date: Tue, 19 Mar 2024 16:57:58 -0400 Subject: [PATCH] python-publish: environment Signed-off-by: William Woodruff --- ci/python-publish.yml | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/ci/python-publish.yml b/ci/python-publish.yml index bb92010..bf13220 100644 --- a/ci/python-publish.yml +++ b/ci/python-publish.yml @@ -46,6 +46,13 @@ jobs: # IMPORTANT: this permission is mandatory for trusted publishing id-token: write + # Dedicated environments with protections for publishing are strongly recommended. + # For more information, see: https://docs.github.com/en/actions/deployment/targeting-different-environments/using-environments-for-deployment#deployment-protection-rules + environment: + name: pypi + # OPTIONAL: uncomment and update to include your PyPI project URL in the deployment status: + # url: https://pypi.org/p/YOURPROJECT + steps: - name: Retrieve release distributions uses: actions/download-artifact@v4