@@ -108,7 +108,7 @@ jobs:
108108 if : matrix.os == 'linux'
109109 with :
110110 version : " 18.1.8"
111-
111+
112112 - name : Setup CBake
113113 uses : Devolutions/actions-public/setup-cbake@v1
114114 if : matrix.os == 'linux'
@@ -235,19 +235,19 @@ jobs:
235235
236236 [xml] $InfoPlistXml = Get-Content (Join-Path "ffi" "dotnet" "Devolutions.Picky" "Info.plist")
237237 Select-Xml -xml $InfoPlistXml -XPath "/plist/dict/key[. = 'CFBundleIdentifier']/following-sibling::string[1]" |
238- %{
238+ %{
239239 $_.Node.InnerXml = "com.devolutions.picky"
240240 }
241241 Select-Xml -xml $InfoPlistXml -XPath "/plist/dict/key[. = 'CFBundleExecutable']/following-sibling::string[1]" |
242- %{
242+ %{
243243 $_.Node.InnerXml = $BundleName
244244 }
245245 Select-Xml -xml $InfoPlistXml -XPath "/plist/dict/key[. = 'CFBundleVersion']/following-sibling::string[1]" |
246- %{
246+ %{
247247 $_.Node.InnerXml = $Version
248248 }
249249 Select-Xml -xml $InfoPlistXml -XPath "/plist/dict/key[. = 'CFBundleShortVersionString']/following-sibling::string[1]" |
250- %{
250+ %{
251251 $_.Node.InnerXml = $ShortVersion
252252 }
253253
@@ -314,6 +314,8 @@ jobs:
314314 if : ${{ needs.preflight.outputs.dry-run == 'false' }}
315315 needs : [preflight, build-managed]
316316 runs-on : ubuntu-latest
317+ permissions :
318+ id-token : write
317319
318320 steps :
319321 - name : Download NuGet package artifact
@@ -322,6 +324,12 @@ jobs:
322324 name : picky-nupkg
323325 path : package
324326
327+ - name : NuGet login (OIDC)
328+ uses : NuGet/login@v1
329+ id : nuget-login
330+ with :
331+ user : ${{ secrets.NUGET_BOT_USERNAME }}
332+
325333 - name : Publish to nuget.org
326334 run : |
327335 $Files = Get-ChildItem -Recurse package/*.nupkg
@@ -333,7 +341,7 @@ jobs:
333341 'push',
334342 "$File",
335343 '--api-key',
336- '${{ secrets .NUGET_API_KEY }}',
344+ '${{ steps.nuget-login.outputs .NUGET_API_KEY }}',
337345 '--source',
338346 'https://api.nuget.org/v3/index.json',
339347 '--skip-duplicate'
0 commit comments