publish to pypi #6

	# use PyPI trusted publishing, as described here:
	# https://blog.trailofbits.com/2023/05/23/trusted-publishing-a-new-benchmark-for-packaging-security/
	name: publish to pypi

	on:
	release:
	types: [published]

	permissions:
	contents: write

	jobs:
	pypi-publish:
	runs-on: ubuntu-latest
	environment:
	name: release
	permissions:
	id-token: write
	steps:
	- uses: actions/checkout@v2
	- uses: astral-sh/setup-uv@v5
	- name: install
	run: uv sync --all-extras
	- name: build package
	run: uv run python -m build
	- name: upload package artifacts
	uses: actions/upload-artifact@5d5d22a31266ced268874388b861e4b58bb5c2f3 # v4.3.1
	with:
	path: dist/*
	- name: publish package
	uses: pypa/gh-action-pypi-publish@f5622bde02b04381239da3573277701ceca8f6a0 # release/v1
	with:
	skip-existing: true
	verbose: true
	print-hash: true

Provide feedback