From 062502a66a3ef146834483b99a707ea6c20f3b92 Mon Sep 17 00:00:00 2001
From: Justin Bousquin <bousquin.justin@epa.gov>
Date: Wed, 21 Aug 2024 11:14:00 -0500
Subject: [PATCH] Update release.yml

Use trusted publisher not token
---
 .github/workflows/release.yml | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index a6cbbdf..b37aa9e 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -44,7 +44,9 @@ jobs:
   publish-to-pypi:
     needs: [build_wheels, build_sdist]
     runs-on: ubuntu-latest
-    environment: pypi
+    environment:
+      name: pypi
+      url: https://pypi.org/p/harmonize-wq
     permissions:
       id-token: write
     if: github.event_name == 'release' && github.event.action == 'published'
@@ -59,6 +61,3 @@ jobs:
           #path: dist
 
       - uses: pypa/gh-action-pypi-publish@release/v1
-        with:
-          user: __token__
-          password: ${{ secrets.PYPI_API_TOKEN }}