Skip to content

Commit

Permalink
trusted-publishing: add environment: (#356)
Browse files Browse the repository at this point in the history 
Signed-off-by: William Woodruff <william@trailofbits.com>
  • Loading branch information
@woodruffw
woodruffw authored Feb 20, 2024
1 parent 09e4b84 commit c51c009
Showing 1 changed file with 4 additions and 1 deletion.
5 changes: 4 additions & 1 deletion trusted-publishing/releasing-gems.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -17,6 +17,9 @@ jobs:
contents: write
id-token: write

# If you configured a GitHub environment on RubyGems, you must use it here.
environment: release

steps:
# Set up
- uses: actions/checkout@v4
Expand All @@ -30,4 +33,4 @@ jobs:
- uses: rubygems/release-gem@v1
```
Note the `id-token: write`` permission: you **must** provide this permission at either the job level (strongly recommended) or workflow level (discouraged). Without it, the publishing action won't have sufficient permissions to identify itself to RubyGems.org.
Note the `id-token: write` permission: you **must** provide this permission at either the job level (strongly recommended) or workflow level (discouraged). Without it, the publishing action won't have sufficient permissions to identify itself to RubyGems.org.

0 comments on commit c51c009

Please sign in to comment.