Skip to content

[FSSDK-12875] trusted publishing#418

Merged
junaed-optimizely merged 1 commit into
masterfrom
junaed/fssdk-12875-trusted-publishing-enablement
Jul 9, 2026
Merged

[FSSDK-12875] trusted publishing#418
junaed-optimizely merged 1 commit into
masterfrom
junaed/fssdk-12875-trusted-publishing-enablement

Conversation

@junaed-optimizely

Copy link
Copy Markdown
Contributor

Summary

This pull request updates the NuGet package publishing workflow in .github/workflows/csharp_release.yml to improve security and authentication practices. The main changes involve setting explicit permissions and switching to a more secure login step for publishing to NuGet.

Security and authentication improvements:

  • Added id-token: write permission to the publish job to enable secure authentication with NuGet.
  • Introduced a NuGet/login@v1 step to perform NuGet authentication using credentials from GitHub secrets, replacing direct use of the API key.
  • Updated the dotnet nuget push command to use the API key output from the NuGet login step, rather than referencing the secret directly.

Test plan

Existing test should pass

Issues

  • FSSDK-12875

@junaed-optimizely junaed-optimizely merged commit 4386354 into master Jul 9, 2026
8 of 10 checks passed
@junaed-optimizely junaed-optimizely deleted the junaed/fssdk-12875-trusted-publishing-enablement branch July 9, 2026 17:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant