From 5aa70dd21493911bebf6f2f3257168021f65223c Mon Sep 17 00:00:00 2001
From: Michael Feil <63565275+michaelfeil@users.noreply.github.com>
Date: Mon, 1 Apr 2024 19:48:19 -0700
Subject: [PATCH 1/2] Update publish.yml - add trusted_publishing

---
 .github/workflows/publish.yml | 11 +++++++----
 1 file changed, 7 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
index b4c263c..e55b72f 100644
--- a/.github/workflows/publish.yml
+++ b/.github/workflows/publish.yml
@@ -32,6 +32,11 @@ jobs:
   publish:
     name: Publish release
     runs-on: ubuntu-latest
+    permissions:
+      id-token: write
+    environment:
+      name: pypi
+      url: https://pypi.org/p/shellingham
     needs:
     - build
 
@@ -42,8 +47,6 @@ jobs:
         path: dist
 
     - name: Push build artifacts to PyPI
-      uses: pypa/gh-action-pypi-publish@v1.5.0
+      uses: pypa/gh-action-pypi-publish@v1.8.14
       with:
-        skip_existing: true
-        user: __token__
-        password: ${{ secrets.PYPI_API_TOKEN }}
+        skip-existing: true

From 806f257be314c45829dc479d5a5bad29a1655cb7 Mon Sep 17 00:00:00 2001
From: Tzu-ping Chung <uranusjr@gmail.com>
Date: Tue, 9 Apr 2024 16:34:02 +0800
Subject: [PATCH 2/2] Fix publishing environment name

---
 .github/workflows/publish.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
index e55b72f..46a4e05 100644
--- a/.github/workflows/publish.yml
+++ b/.github/workflows/publish.yml
@@ -35,7 +35,7 @@ jobs:
     permissions:
       id-token: write
     environment:
-      name: pypi
+      name: publish
       url: https://pypi.org/p/shellingham
     needs:
     - build