Use pypi trust provider to upload assets

nxpfrankli · web-flow · commit 5f76e7861333 · 2025-07-30T11:15:57.000-05:00
Use pypi trust provider to upload assets

Signed-off-by: Frank Li &lt;Frank.Li@nxp.com&gt;
diff --git a/.github/workflows/build_wrapper.yaml b/.github/workflows/build_wrapper.yaml
@@ -177,16 +177,11 @@ jobs:
           name: reports
           path: ./wrapper/reports/*
 
-      - name: Release package to pypi
-        if: github.ref_type == 'tag'
-        env:
-          TWINE_USERNAME: ${{ secrets.TWINE_USERNAME }}
-          TWINE_PASSWORD: ${{ secrets.TWINE_PASSWORD }}
-          #TWINE_REPOSITORY_URL: ${{ secrets.TWINE_REPOSITORY_URL }}
-        working-directory: ./wrapper
-        run: |
-          twine --no-color check dist/*
-          twine --no-color upload --repository pypi dist/*
+      - name: Publish to PyPI
+        uses: pypa/gh-action-pypi-publish@release/v1
+        with:
+          # This tells the action to use Trusted Publishing with OIDC
+          skip-existing: true  # Optional: don’t fail if the same version is already uploaded
 
       - name: Upload the dist folder
         uses: actions/upload-artifact@v4
