From 1a1bd31e5ff0131fe2f9a58d00e80c7b6ef64cf6 Mon Sep 17 00:00:00 2001
From: 0x2b3bfa0 <0x2b3bfa0+git@googlemail.com>
Date: Mon, 11 Sep 2023 17:37:58 +0200
Subject: [PATCH] Migrate from PyPI tokens to Trusted Publishers

---
 .github/workflows/release.yaml | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
index ab963e7..e501f2f 100644
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@@ -9,6 +9,10 @@ permissions:
 
 jobs:
   pip:
+    environment: pypi
+    permissions:
+      contents: read
+      id-token: write
     runs-on: ubuntu-20.04
     steps:
     - uses: actions/checkout@v3
@@ -27,6 +31,3 @@ jobs:
         twine check dist/*
     - name: Publish packages to PyPI
       uses: pypa/gh-action-pypi-publish@master
-      with:
-        user: __token__
-        password: ${{ secrets.PYPI_TOKEN }}