This repository defines a Github action to provide opt-in automatic publication of Python packages to PyPI upon qualifying Github release events. It also defines separate custom Github action steps for building Python wheels and source distributions, validating repository metadata, and publishing to PyPI. This repository does not need to be cloned or interacted with in order to take advantage of the service. See below for documentation.
Default criteria for publishing a release:
- Tag must conform to the semantic versioning specification (https://semver.org/). i.e.
- 0.0.8
- 1.0.0
- 1.0.0-alpha
- 1.0.0-alpha.1
The publication mechanism is provided on an opt-in basis to repositories within the following Github organizations:
- spacetelescope
Stipulations:
- If the project being published already exists on PyPI, the PyPI account named
stsci_maintainermust be defined as a 'maintainer'.- If you wish to specify the set of credentials used to publish the package, please see Using other credentials below.
- If the project does not yet exist, it will be created on PyPI by the account
stsci_maintainer.
- On the main repository page, click Actions at the top, just below the name of the repository.
- In the Workflows made for your Python repository, locate the "Publish to PyPI" workflow made by "Space Telescope Science Institute".
- Click the Set up this workflow button. This will open a commit page with the workflow code that will be added to the repository.
- Click the Start Commit button in the upper right hand corner.
- Add a descriptive commit message if you like. "Activating automatic PyPI publication" or similar.
- Click Commit new file.
Whenever a new release with a semver-compliant tag is made on Github from the repository, the package will be created and published to PyPI using the stsci_maintainer account.
The default set of credentials used to publish packages to PyPI are those of the PyPI account stsci_maintainer. If you want or need to use other credentials, they may be specified as secrets in the settings of the Github repository.
- Open the Settings page of the repository (top portion of the page, on the line under the repository name).
- Select Secrets from the list on the left hand side.
- Define a secret with the name
PYPI_USERNAME_STSCI_MAINTAINERthe value of which is the PyPI username to be used. - Define another secret with the name
PYPI_PASSWORD_STSCI_MAINTAINERthe value of which is the PyPI password to be used.
Whenever a new release is made, the package will be created and published to PyPI using the supplied credentials.
By default, the workflow will publish to the production PyPI repository. For testing purposes, it can be configured to publish to the test PyPI repository at https://test.pypi.org by creating a secret called PYPI_TEST:
- Open the Settings page of the repository (top portion of the page, on the line under the repository name).
- Select Secrets from the list on the left hand side.
- Define a secret with the name
PYPI_TESTthe value of which is 'true'.
If a problem occurs with the publication, an e-mail message with "Run failed: Publish to PyPI" in the subject will be sent to all users subscribed to notifications from the repository in question. The message will contain a link to the logs from the publication attempt.