Support nuget.org Trusted Publishing #4883
Description
Objective
Enable secure, maintainable package publishing by supporting nuget.org Trusted Publishing for this repository.
Why
NuGet Trusted Publishing removes long-lived API key dependence and aligns publishing with short-lived identity-based trust.
In Scope
- Define repository-level support for publishing GitVersion packages via nuget.org Trusted Publishing.
- Ensure release/publish workflows can use trusted identity to publish packages.
- Maintain release reliability while improving credential security posture.
- Document maintainers' expected operational flow for trusted publishing.
Out of Scope
- Introducing new package feeds or changing package naming/versioning strategy.
- Broad CI/CD redesign unrelated to package publishing authentication.
Done When
- Package publishing to nuget.org is available through Trusted Publishing.
- No long-lived nuget.org API key is required for normal publish operations.
- Maintainers have clear documentation for setup/verification and troubleshooting.