From 1b9eea360ef5d33817670bbb3a820407d36f639c Mon Sep 17 00:00:00 2001 From: Artur Shiriev Date: Wed, 1 Jul 2026 21:05:39 +0300 Subject: [PATCH] docs(release): add 2.21.1 notes (Trusted Publishing pipeline) Co-Authored-By: Claude Opus 4.8 (1M context) --- planning/releases/2.21.1.md | 11 +++++++++++ 1 file changed, 11 insertions(+) create mode 100644 planning/releases/2.21.1.md diff --git a/planning/releases/2.21.1.md b/planning/releases/2.21.1.md new file mode 100644 index 0000000..a8f796a --- /dev/null +++ b/planning/releases/2.21.1.md @@ -0,0 +1,11 @@ +# modern-di 2.21.1 — release pipeline on PyPI Trusted Publishing + +No library changes. The package is identical to 2.21.0; this release exercises the new publish path end-to-end. + +## CI + +- Releases now authenticate to PyPI via **Trusted Publishing (OIDC)** instead of a long-lived `PYPI_TOKEN` secret. `uv publish` auto-detects the GitHub Actions id-token; the release job runs under a `pypi` environment that scopes the trusted publisher (#251). + +## Downstream + +No action required. Nothing about the installed package changes.