What are the prerequisites for using pypi-doppler?

You need the Doppler CLI installed and authenticated, a PyPI API token stored in Doppler, and the 'uv' package manager installed on your local machine.

Why does this skill enforce local-only publishing?

Local publishing is faster, allows for manual verification before the final release, and prevents security risks associated with storing long-lived PyPI tokens in CI/CD secrets.

Does this skill work with GitHub Actions?

No, this skill explicitly blocks execution in GitHub Actions and other CI environments to enforce workspace-wide security policies.

How does it handle versioning?

It is designed to work alongside automated versioning tools. You typically let CI handle tags and changelogs, pull the latest commit, and then use this skill to publish the final build.

PyPI Doppler Publisher

Name: PyPI Doppler Publisher
Author: terrylica

byterrylica

•

部署与 DevOps

Automates secure local-only PyPI package publishing using Doppler for credential management.

关于

The pypi-doppler skill provides a specialized workflow for publishing Python packages to PyPI from a local environment while strictly forbidding CI/CD execution. By integrating with Doppler for secret management, it eliminates the need for long-lived PyPI tokens in GitHub Secrets or plaintext files. The skill enforces security through automated CI detection guards and repository verification, ensuring that releases are fast, manual, and compliant with high-security standards like ADR-0027.

主要功能

2 GitHub stars
Streamlined build and publish workflow using the uv package manager
Secure credential management via Doppler CLI integration
Local-only execution policy with automated CI detection guards
Version increment verification to prevent failed PyPI uploads
Repository and environment validation to prevent fork abuse

使用场景

Implementing manual-approval release workflows for production Python libraries
Securing Python package releases by moving tokens from CI to Doppler
Reducing release cycle times from minutes in CI to seconds on local hardware

关于

主要功能

2 GitHub stars
Streamlined build and publish workflow using the uv package manager
Secure credential management via Doppler CLI integration
Local-only execution policy with automated CI detection guards
Version increment verification to prevent failed PyPI uploads
Repository and environment validation to prevent fork abuse

使用场景

Implementing manual-approval release workflows for production Python libraries
Securing Python package releases by moving tokens from CI to Doppler
Reducing release cycle times from minutes in CI to seconds on local hardware