gh-action-pypi-publish
gh-action-pypi-publish copied to clipboard
pypa
The blessed :octocat: GitHub Action, for publishing your :package: distribution files to PyPI: https://github.com/marketplace/actions/pypi-publish
This adds a nudge message for the user with a link to create a Trusted Publisher for the project being uploaded. The link is a "magic link", containing URL parameters...
Our `cibuildwheel` action built a wheel with the unsupported platform tag `manylinux1_aarch64`. During the upload pypip rejects the wheel with: ``` ERROR HTTPError: 400 Bad Request from https://upload.pypi.org/legacy/ Binary wheel...
Including hashes means new files won't be used as candidates during the installation phase. Requiring wheels ensures that source distributions won't be used as candidates, mitigating the potential to "downgrade"...
using this action with gitea tho. everything was working great and then suddenly it stopped. ive tried manually pushing to gitea's pypi repo and it works fine. but whenever i...
Greetings all, This project seems like it can run without Docker. My self-hosted runner falls under an LXC container. What are the chances this project can support running in a...
Could the README point to some example in the wild of someone using this properly, so I could understand how to properly configure it to publish my package? I've pushed...
I'm getting an error about invalid attestations trying to publish my project to PyPI. I use a pretty typical workflow: `cibuildwheel` to create wheels, and `upload-artifact`/`download-artifact` actions to collect all...
@woodruffw @facutuesca we recently saw an HTTP 502 and a traceback in the attestations flow: ```python-traceback Traceback (most recent call last): File "/root/.local/lib/python3.12/site-packages/sigstore/_internal/rekor/client.py", line 160, in post resp.raise_for_status() File "/root/.local/lib/python3.12/site-packages/requests/models.py",...
Hi, I encountered a case where the script failed due to the presence of `.github` directory. The rest of the action appears to handle directories appropriately, this part of the...
Previously, I didn't know if it's possible to detect. However, I just occurred to me that this can be inferred from the environment state. I think that we should be...