trusted publisher Pypi (#10)

Author: cle-b

.github/workflows/build.yml

@@ -44,24 +44,35 @@ jobs:
     name: Deploy on PyPI
     needs: testospython
     runs-on: ubuntu-latest
+    environment: release
+    permissions:
+      id-token: write  # IMPORTANT: mandatory for trusted publishing 
     timeout-minutes: 10
     steps:
     - uses: actions/checkout@v4
     - name: Set up Python ${{ matrix.python-version }}
       uses: actions/setup-python@v5
       with:
-        python-version: 3.9
+        python-version: 3.11
     - name: Install pypa/build
       run: |
         python -m pip install --upgrade pip
         python -m pip install --upgrade setuptools wheel
         python -m pip install build --user
     - name: Build a binary wheel and a source tarball
-      run: |        
-        python -m build --sdist --wheel --outdir dist/
+      run: python3 -m build
+    - name: Store the distribution packages
+      if: >
+        github.event_name == 'push' &&
+        startsWith(github.ref, 'refs/tags') &&
+        github.actor == github.repository_owner
+      uses: actions/upload-artifact@v4
+      with:
+        name: python-package-distributions
+        path: dist/
     - name: Publish package on Pypi
-      if: github.event_name == 'push' && startsWith(github.ref, 'refs/tags')
+      if: >
+        github.event_name == 'push' &&
+        startsWith(github.ref, 'refs/tags') &&
+        github.actor == github.repository_owner
       uses: pypa/gh-action-pypi-publish@release/v1
-      with:
-        user: __token__
-        password: ${{ secrets.PYPI_API_TOKEN }}

pytest_httpdbg/__init__.py

@@ -1,4 +1,4 @@
 # -*- coding: utf-8 -*-
 from pytest_httpdbg.plugin import httpdbg_record_filename  # noqa F401
 
-__version__ = "0.6.0"
+__version__ = "0.6.1"