Skip to content

Commit 82ed426

Browse files
IvanMurzakIvanMurzak
authored
Merge pull request #72 from IvanMurzak/claude/setup-nuget-trusted-publishing-sLFun
Use NuGet trusted publishing (OIDC) instead of API key
2 parents 14f9156 + 089589b commit 82ed426

1 file changed

Lines changed: 7 additions & 1 deletion

File tree

.github/workflows/release.yml

Lines changed: 7 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -151,6 +151,9 @@ jobs:
151151
needs: [build-and-test, check-version-tag]
152152
runs-on: ubuntu-latest
153153
if: needs.check-version-tag.outputs.is_new_version == 'true'
154+
permissions:
155+
id-token: write # Required for NuGet trusted publishing (OIDC)
156+
contents: read
154157
steps:
155158
- uses: actions/checkout@v4
156159
- name: Setup .NET
@@ -169,5 +172,8 @@ jobs:
169172
- name: Pack
170173
run: dotnet pack ReflectorNet/ReflectorNet.csproj --no-build --configuration Release --output ./packages
171174

175+
- name: NuGet login (Trusted Publishing)
176+
uses: nuget/login@v1
177+
172178
- name: Publish to NuGet
173-
run: dotnet nuget push ./packages/*.nupkg --api-key ${{ secrets.NUGET_API_KEY }} --source https://api.nuget.org/v3/index.json --skip-duplicate
179+
run: dotnet nuget push ./packages/*.nupkg --source https://api.nuget.org/v3/index.json --skip-duplicate

0 commit comments

Comments
 (0)