Skip to content

Commit 6c229d7

Browse files
segiddinssimi
segiddins
authored and
simi
committed
Add workflow to publish gem with trusted publishing
Signed-off-by: Samuel Giddins <[email protected]>
1 parent 4dc73e7 commit 6c229d7

File tree

1 file changed

+35
-0
lines changed

1 file changed

+35
-0
lines changed

.github/workflows/push_gem.yml

+35
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,35 @@
1+
name: Push Gem
2+
3+
on:
4+
release:
5+
types:
6+
- created
7+
8+
permissions:
9+
contents: read
10+
11+
jobs:
12+
push:
13+
if: github.repository == 'rubygems/gems'
14+
runs-on: ubuntu-latest
15+
16+
permissions:
17+
contents: write
18+
id-token: write
19+
20+
steps:
21+
# Set up
22+
- name: Harden Runner
23+
uses: step-security/harden-runner@a4aa98b93cab29d9b1101a6143fb8bce00e2eac4 # v2.7.1
24+
with:
25+
egress-policy: audit
26+
27+
- uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4.1.4
28+
- name: Set up Ruby
29+
uses: ruby/setup-ruby@cacc9f1c0b3f4eb8a16a6bb0ed10897b43b9de49 # v1.176.0
30+
with:
31+
bundler-cache: true
32+
ruby-version: ruby
33+
34+
# Release
35+
- uses: rubygems/release-gem@612653d273a73bdae1df8453e090060bb4db5f31 # v1

0 commit comments

Comments
 (0)