diff --git a/.github/workflows/dotnet-release.yml b/.github/workflows/dotnet-release.yml index c57364d52..7e8206e65 100644 --- a/.github/workflows/dotnet-release.yml +++ b/.github/workflows/dotnet-release.yml @@ -118,14 +118,23 @@ jobs: runs-on: ubuntu-latest environment: name: nuget-stable + permissions: + id-token: write + contents: read steps: - name: Download package uses: actions/download-artifact@v8 with: name: signed-nuget-packages + - name: NuGet login (OIDC) + id: login + uses: NuGet/login@v1 + with: + user: ${{ secrets.NUGET_USER }} + - name: Publish to NuGet - run: dotnet nuget push ./*.nupkg --source "https://api.nuget.org/v3/index.json" --api-key ${{ secrets.NUGET_PACKAGE_PUSH_TOKEN }} + run: dotnet nuget push ./*.nupkg --source "https://api.nuget.org/v3/index.json" --api-key ${{ steps.login.outputs.NUGET_API_KEY }} --skip-duplicate publish-coverage: needs: run-tests @@ -133,4 +142,3 @@ jobs: with: fail_on_low_coverage: true secrets: inherit -