From 8fc956a72e5a1cf5d0ede9849d73a6ca0c263ab7 Mon Sep 17 00:00:00 2001
From: staticdev <staticdev-support@proton.me>
Date: Fri, 24 Apr 2026 09:40:12 +0200
Subject: [PATCH] Fix trusted publishing

---
 .github/workflows/release.yml | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index f57b1f1e..81c309a3 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -11,6 +11,11 @@ jobs:
     if: github.repository_owner == 'PyCQA'
     name: Release
     runs-on: ubuntu-latest
+    environment:
+      name: pypi
+      url: https://pypi.org/p/isort
+    permissions:
+      id-token: write
     steps:
       - name: Check out the repository
         uses: actions/checkout@v6
@@ -45,8 +50,6 @@ jobs:
 
       - name: Publish package on PyPI
         uses: pypa/gh-action-pypi-publish@release/v1
-        with:
-          password: ${{ secrets.PYPI_API_TOKEN }}
 
       - name: Publish the release notes
         uses: release-drafter/release-drafter@v7