mirror of
https://gitcode.com/gh_mirrors/gh/gh-action-pypi-publish.git
synced 2026-07-02 18:27:49 +00:00
335e8b00ae
Signed-off-by: William Woodruff <william@trailofbits.com>
18 lines
480 B
Plaintext
18 lines
480 B
Plaintext
twine
|
|
|
|
# NOTE: Used to detect an ambient OIDC credential for OIDC publishing,
|
|
# NOTE: as well as PEP 740 attestations.
|
|
id ~= 1.0
|
|
|
|
# NOTE: This is pulled in transitively through `twine`, but we also declare
|
|
# NOTE: it explicitly here because `oidc-exchange.py` uses it.
|
|
# Ref: https://github.com/di/id
|
|
requests
|
|
|
|
# NOTE: Used to generate attestations.
|
|
pypi-attestations ~= 0.0.13
|
|
sigstore ~= 3.5.1
|
|
|
|
# NOTE: Used to detect the PyPI package name from the distribution files
|
|
packaging
|