Trusted Publishing¶
Secure, token-free publishing to PyPI using OpenID Connect (OIDC).
What is Trusted Publishing?¶
Trusted publishing eliminates the need for PyPI API tokens by using OpenID Connect (OIDC) to authenticate directly between GitHub Actions and PyPI.
%%{init: {'theme': 'neutral'}}%%
sequenceDiagram
participant GH as GitHub Actions
participant OIDC as GitHub OIDC Provider
participant PyPI as PyPI
GH->>OIDC: Request JWT token
OIDC->>GH: Return signed JWT
GH->>PyPI: Upload with JWT
PyPI->>PyPI: Verify JWT signature
PyPI->>GH: Upload successfulBenefits¶
| Feature | API Token | Trusted Publishing |
|---|---|---|
| Secret management | Required | None |
| Token rotation | Manual | Automatic |
| Scope | Account-wide | Per-project |
| Audit trail | Limited | Full GitHub context |
| Security | Good | Better |
Setup Guide¶
Step 1: Configure PyPI¶
- Go to pypi.org and log in
- Navigate to your project → Manage → Publishing
- Add a new trusted publisher:
| Field | Value | Description |
|---|---|---|
| Owner | your-username |
GitHub org or username |
| Repository | your-repo |
Repository name |
| Workflow | release.yml |
Workflow filename |
| Environment | release (optional) |
GitHub environment |
Use Environments for Extra Security
Adding a GitHub environment enables:
- Required reviewers before publishing
- Branch protection rules
- Deployment logs and history
Step 2: Configure GitHub Workflow¶
Set the required permissions:
name: Release
on:
push:
branches: [main]
permissions:
contents: write # Create tags and releases
pull-requests: write # Create release PRs
id-token: write # Request OIDC tokens
jobs:
release:
runs-on: ubuntu-latest
# Optional: use environment for extra protection
environment: release
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- uses: mikeleppane/releasio@v2
with:
command: release
dry-run: 'false'
github-token: ${{ secrets.GITHUB_TOKEN }}
Step 3: Configure releasio¶
Enable trusted publishing in your configuration:
That's it! No PYPI_TOKEN secret needed.
How It Works¶
Authentication Flow¶
- GitHub Action runs on your repository
- OIDC token requested from GitHub's identity provider
- Token contains claims about the workflow:
- Repository owner and name
- Workflow filename
- Git ref and SHA
- Environment (if configured)
- PyPI validates the token against your trusted publisher config
- Upload proceeds if all claims match
Token Claims¶
The OIDC token includes these claims that PyPI verifies:
{
"sub": "repo:owner/repo:ref:refs/heads/main",
"repository": "owner/repo",
"repository_owner": "owner",
"job_workflow_ref": "owner/repo/.github/workflows/release.yml@refs/heads/main",
"environment": "release"
}
Environments¶
Using GitHub environments adds an extra layer of security.
Creating an Environment¶
- Go to Settings → Environments
- Click New environment
- Name it
release - Configure protection rules:
# Optional protection rules
Required reviewers: true
Wait timer: 0 minutes
Deployment branches: main only
Using in Workflow¶
Environment Name Must Match
The environment name in your workflow must exactly match what you configured on PyPI.
TestPyPI Setup¶
For testing, configure trusted publishing on TestPyPI too.
Configure TestPyPI¶
- Go to test.pypi.org
- Add trusted publisher with same settings
Workflow for TestPyPI¶
name: Test Release
on:
push:
branches: [develop]
permissions:
id-token: write
contents: read
jobs:
test-publish:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
with:
fetch-depth: 0
- uses: mikeleppane/releasio@v2
with:
command: release
dry-run: 'false'
github-token: ${{ secrets.GITHUB_TOKEN }}
env:
# Point to TestPyPI
RELEASIO_PUBLISH_REGISTRY: https://test.pypi.org/legacy/
Or configure in your config file:
Troubleshooting¶
Common Issues¶
"Token request failed"¶
Solution: Ensure id-token: write permission is set:
"Publisher not found"¶
Checklist:
- Owner name matches exactly (case-sensitive)
- Repository name matches exactly
- Workflow filename matches (e.g.,
release.yml) - Environment name matches (if configured)
- Publishing from correct branch
"Pending publisher"¶
If your project is new, you can set up trusted publishing before the first upload:
- Go to PyPI → Your projects → Publishing
- Add Pending Publisher with your details
- First successful upload creates the project
Fallback to API Token¶
If you can't use trusted publishing, you can still use API tokens:
- uses: mikeleppane/releasio@v2
with:
command: release
dry-run: 'false'
github-token: ${{ secrets.GITHUB_TOKEN }}
pypi-token: ${{ secrets.PYPI_TOKEN }}
Configure in releasio:
Token Precedence
If both trusted_publishing = true and a pypi-token is provided,
releasio will prefer trusted publishing.
Security Best Practices¶
Do¶
- Use environments for production releases
- Require reviewers for the release environment
- Limit trusted publisher to specific branches
- Monitor PyPI security logs
Don't¶
- Share OIDC tokens in logs
- Use trusted publishing for forks
- Skip branch protection rules
- Ignore failed validation errors