Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
This commit refactors our GitHub Actions release workflow away from its prior usage of antiquated (and unsurprisingly insecure) tokens to PyPI-specific "Trusted Publishers" (i.e., PyPI's modern implementation of OpenID Connect (OIDC)). In theory, doing so *should* resolve the current plethora of "Unverified details" that currently pollutes @beartype's PyPI project page. In practice, doing so will almost certainly change nothing and thus have no benefit whatsoever. Indeed, doing so will probably prevent our entire release workflow from behaving as expected – further squandering scarce open-source volunteerism for no particularly good reason whatsoever. Bureaucracy: "What is it good for when @leycec could just be playing video games about robot assassins who insist they mean well instead?" (*Parsimonious persimmons on a jumpin' juniper!*)
- Loading branch information