Change: Use trusted publisher upload for PyPI

greenbone · Jan 26, 2024 · 9e7aa49 · 9e7aa49
1 parent 18f3b07
commit 9e7aa49
Showing 1 changed file with 5 additions and 2 deletions.
diff --git a/.github/workflows/deploy-pypi.yml b/.github/workflows/deploy-pypi.yml
@@ -6,9 +6,12 @@ on:
 
 jobs:
   deploy:
+    permissions:
+      id-token: write
     runs-on: ubuntu-latest
+    environment:
+      name: pypi
+      url: https://pypi.org/project/notus-scanner/
     steps:
       - name: Build and publish to PyPI
         uses: greenbone/actions/pypi-upload@v3
-        with:
-          pypi-token: ${{ secrets.PYPI_TOKEN }}