Switch to NuGet trusted publishing

We should switch from using API keys to publish packages to NuGet.org to the new [Trusted Publishing](https://learn.microsoft.com/nuget/nuget-org/trusted-publishing) feature: [New Trusted Publishing enhances security on NuGet.org](https://devblogs.microsoft.com/dotnet/enhanced-security-is-here-with-the-new-trust-publishing-on-nuget-org/)

This is more secure, and avoids the need to renew/rotate NuGet API keys.

See https://github.com/grafana/grafana-opentelemetry-dotnet/pull/266 for an example of adopting this.

<img width="1457" height="410" alt="Image" src="https://github.com/user-attachments/assets/81f9bb41-bd3f-4649-9883-173f96e1eff2" />

As you have three different GitHub Actions workflows to publish the NuGet packages, you'll need to create a trusted publishing policy for each one. Values you'll need are below:

- Repository organization: `grafana`
- Repository name: `pyroscope-dotnet`
- Workflow file: `tag_managed_helper.yml` or `tag_tracing_opentracing_helper.yml` or `tag_tracing_opentelemetry_helper.yml`


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Switch to NuGet trusted publishing #119

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Switch to NuGet trusted publishing #119

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions