You can run the exact same script locally as you do in CI, with the only difference being the addition of a 2FA prompt.
That's a good point, I would lose package provenance that way. I guess that is fine since it didn't prevent anything here.
I can look into that.
alt Hacker News
That's a good point, I would lose package provenance that way. I guess that is fine since it didn't prevent anything here.
I can look into that.