From d5aceb7c8156bb3d65179abdcb3d4613320adaa8 Mon Sep 17 00:00:00 2001
From: Andreas Poehlmann <ap--@users.noreply.github.com>
Date: Fri, 13 Dec 2024 00:48:36 +0100
Subject: [PATCH] ci: switch to trusted publishing

---
 .github/workflows/release.yml | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index ed1af5de..66e176d5 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -11,6 +11,9 @@ env:
 jobs:
   release:
     runs-on: ubuntu-latest
+    environment: pypi
+    permissions:
+      id-token: write
     steps:
     - name: Check out the repository
       uses: actions/checkout@v4
@@ -35,7 +38,5 @@ jobs:
       if: github.event_name == 'release'
       uses: pypa/gh-action-pypi-publish@release/v1
       with:
-        user: __token__
-        password: ${{ secrets.UPATH_GIT_REPO }}
         verbose: true
         skip_existing: true