Closed
Description
@woile We're currently using your pypi account/password for publishing commitizen to PyPI. [1] Do you think we should use API token instead to avoid exposing your credentials?
[1] https://github.com/commitizen-tools/commitizen/blob/master/scripts/publish#L2
[2] https://pypi.org/help/#apitoken
[3] https://github.com/pycontw/pycontw-postevent-report-generator/blob/master/.github/workflows/python-publish.yaml#L35
Metadata
Metadata
Assignees
Labels
No labels