From 8c9f99ed10edad2b49e876dd69a6277e67dc082c Mon Sep 17 00:00:00 2001
From: Jk <kpadeyjk@gmail.com>
Date: Thu, 4 Jan 2024 23:15:45 +0100
Subject: [PATCH] Fix the usage of the pypa/gh-action-pypi-publish action

Fix the used version.
Switch to trusted publisher instead of password authentication.
---
 .github/workflows/release.yml | 11 +++++++----
 1 file changed, 7 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 017be2a..a8332fc 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -10,13 +10,18 @@ jobs:
   deploy:
     name: Deploy to PYPI
     runs-on: ubuntu-latest
+    environment:
+      name: pypi
+      url: https://pypi.org/project/metar-taf-parser-mivek/
+    permissions:
+      id-token: write
     steps:
       - uses: actions/checkout@v4
 
       - name: Set up Python
         uses: actions/setup-python@v5
         with:
-          python-version: '3.7'
+          python-version: '3.11'
 
       - name: Install dependencies
         run: |
@@ -28,6 +33,4 @@ jobs:
           python -m build --sdist --wheel --outdir dist/
 
       - name: Publish to PyPI
-        uses: pypa/gh-action-pypi-publish@master
-        with:
-          password: ${{ secrets.PYPI_PASSWORD }}
+        uses: pypa/gh-action-pypi-publish@v1.8.11