ci: Fix PyPI publishing to use API token instead of trusted publishing

Agent Zero · Agent Zero · commit b057c54d8dac · 2026-03-05T06:19:49.000+01:00
diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
@@ -42,8 +42,6 @@ jobs:
     environment:
       name: pypi
       url: https://pypi.org/p/localportmanager
-    permissions:
-      id-token: write
     
     steps:
     - name: Download artifacts
@@ -52,8 +50,22 @@ jobs:
         name: dist
         path: dist/
     
-    - name: Publish to PyPI
-      uses: pypa/gh-action-pypi-publish@release/v1
+    - name: Set up Python
+      uses: actions/setup-python@v5
+      with:
+        python-version: '3.11'
+    
+    - name: Install twine
+      run: |
+        python -m pip install --upgrade pip
+        pip install twine
+    
+    - name: Publish to PyPI using token
+      env:
+        TWINE_USERNAME: __token__
+        TWINE_PASSWORD: ${{ secrets.PYPI_API_TOKEN }}
+      run: |
+        twine upload dist/* --skip-existing
 
   publish-github:
     needs: build
