chore(deps): bump pypa/gh-action-pypi-publish from 1.8.5 to 1.8.6
Bumps pypa/gh-action-pypi-publish from 1.8.5 to 1.8.6.
Release notes
Sourced from pypa/gh-action-pypi-publish's releases.
v1.8.6
What's Updated
@woodruffwdropped the references to a “private beta” from the project docs and runtime in pypa/gh-action-pypi-publish#147. He also clarified that the API tokens are still more secure than passwords in pypa/gh-action-pypi-publish#150.@asherfnoticed that the action metadata incorrectly marked thepasswordfield as required and contributed a correction in pypa/gh-action-pypi-publish#151@webknjazmoved the Trusted Publishing example to the top of the README in hopes that new users would default to using it via https://github.com/pypa/gh-action-pypi-publish/commit/f47b34707fd264d5ddb1ef322ca74cf8e4cf351bNew Contributors
@asherfmade their first contribution in pypa/gh-action-pypi-publish#151Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.5...v1.8.6
Commits
-
a56da0bMerge pull request #151 from asherf/trusted -
e4b9031password input is no longer required, since not specifying it implies trusted... -
5a085bfMerge pull request #150 from trail-of-forks/tob-doc-tweaks -
0811f99README: small doc tweaks -
f47b347📝 🎨 Put OIDC on pedestal @ README -
7a1a355🎨 Show GH environments use in README examples -
3b6670bMerge pull request #147 from trail-of-forks/tob-stabilize-oidc -
c008c2fREADME: re-add OIDC note -
fe431ffREADME, oidc-exchange: remove beta references -
c542b72Bump WPS flake8 plugin set to v0.17.0 - Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebasewill rebase this PR -
@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it -
@dependabot mergewill merge this PR after your CI passes on it -
@dependabot squash and mergewill squash and merge this PR after your CI passes on it -
@dependabot cancel mergewill cancel a previously requested merge and block automerging -
@dependabot reopenwill reopen this PR if it is closed -
@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) -
@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)