v2.6.1

What's Changed

• Fix incorrect include-hidden-files argument to upload-artifact by @Cadair in #381

Full Changelog: v2.6.0...v2.6.1

v2.6.0

What's Changed

This release includes some new features for artifacts and automatic selection of python versions, as well as the deprecation of the conda support as the tox-conda plugin is no longer maintained.

Features

• dynamically add supported Python versions to tox matrix, drawing from package metadata (requires-python) by @zacharyburnett in #326
• deprecate conda parameter with warning by @zacharyburnett in #360
• Add an artifact-archive flag to allow upload of non-zipped artifacts by @Cadair in #378
• Add a way to pass include-hidden-files and if-no-files-found to upload-artifact action by @Cadair in #379

Internal

• SEC: add cooldown period to dependabot settings by @neutrinoceros in #365
• SEC: disable default gha permissions by @neutrinoceros in #367
• SEC: avoid leaking credentials by @neutrinoceros in #366
• SEC/DEP: consistently use exact commit hashes for dependency pinning by @neutrinoceros in #371
• use uv to manage Python installation and run scripts by @zacharyburnett in #353
• SEC: fix exploitable template-injection surface (1/n) by @neutrinoceros in #369
• SEC: fix exploitable template-injection surface (2/n) by @neutrinoceros in #370
• don't try to build or restore a cache for the tox_matrix.py script by @zacharyburnett in #375
• SEC: disable default gha permissions (2/2) by @neutrinoceros in #377
• SEC: setup zizmor's pre-commit hook by @neutrinoceros in #376
• Bump the actions group in /.github/workflows with 5 updates by @dependabot[bot] in #380

Full Changelog: v2.5.0...v2.6.0

v2.5.0

What's Changed

• Add the ability to specify a custom working directory for tox and custom build directory for publish by @astrofrog in #358
• Add option to generate test coverage report without codecov by @zacharyburnett in #207
• Don't use dep groups in tox pipeline by @Cadair in #356

Full Changelog: v2.4.0...v2.5.0

v2.4.0

The main feature added in this release is support for uploading dists built with the publish workflows in a subsequent step in your workflow.
This, amongst other things, allows you to use PyPI's Trusted Publishers for authentication.

What's Changed

• add save_artifacts option to publish workflow by @braingram in #346
• ensure uv is always available from cibuildwheel by @neutrinoceros in #331
• Add documentation and tests for using external upload-to-pypi, which enables using trusted publishing by @Cadair in #348
• Add permissions to trusted publishing example by @Cadair in #349

Full Changelog: v2.3.1...v2.4.0

v2.3.1

What's Changed

• Bump the actions group in /.github/workflows with 2 updates by @dependabot[bot] in #320
• MNT: pre-commit house cleaning by @neutrinoceros in #321
• MNT: rework local pre-commit hook as a python hook (instead of system) by @neutrinoceros in #328
• Disable attestations for pypi upload by @Cadair in #333

Full Changelog: v2.3.0...v2.3.1

v2.3.0

What's Changed

• Add support for arm64 windows wheel builds by @finnagin in #318

New Contributors

• @finnagin made their first contribution in #318

Full Changelog: v2.2.2...v2.3.0

v2.2.2

What's Changed

Updated cibuildwheel to 3.2.1.

• DEP: manually upgrade GHA (including fixes for cibuildwheel) by @neutrinoceros in #314

Full Changelog: v2.2.1...v2.2.2

v2.2.1

What's Changed

• MNT: bump cibuildwheel (v3.1.1 -> v3.1.2) by @neutrinoceros in #301

Full Changelog: v2.2.0...v2.2.1

v2.2.0

What's Changed

• Fix tox env configuration by @neutrinoceros in #292
• Upgrade windows image (2019->2022) by @neutrinoceros in #293
• pin internal scripts' dependencies with PEP 723 metadata and pipx run by @neutrinoceros in #291
• Upgrade cibuildwheel (v3.0.0 -> v3.1.1) by @neutrinoceros in #297
• Remove macos-13 by @Cadair in #299

Full Changelog: v2.1.0...v2.2.0

v2.1.0

What's Changed

• ENH: add support for PEP 735 dependency-groups via a new workflow input test_groups by @neutrinoceros in #286

Full Changelog: v2.0.0...v2.1.0