From cc02e0cb93791f0f2bc737108331713cdab7de7d Mon Sep 17 00:00:00 2001
From: Robert Hafner <tedivm@tedivm.com>
Date: Fri, 29 Dec 2023 18:45:40 -0600
Subject: [PATCH] use OIDC to publish to pypi

---
 .github/workflows/pypi.yaml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/pypi.yaml b/.github/workflows/pypi.yaml
index 23f72d9..5132865 100644
--- a/.github/workflows/pypi.yaml
+++ b/.github/workflows/pypi.yaml
@@ -14,6 +14,8 @@ env:
 jobs:
   pypi:
     runs-on: ubuntu-latest
+    permissions:
+      id-token: write
     steps:
       - uses: actions/checkout@v4
 
@@ -31,5 +33,3 @@ jobs:
       - name: Publish package
         if: ${{ env.PUBLISH_TO_PYPI == 'true' && github.event_name == 'push' && startsWith(github.ref, 'refs/tags')}}
         uses: pypa/gh-action-pypi-publish@release/v1
-        with:
-          password: ${{ secrets.PYPI_PUBLISH_API_KEY }}