update

brynary · brynary · commit 8fa21a11eead · 2025-04-13T11:53:08.000-04:00
diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
@@ -10,14 +10,12 @@ on:
 permissions:
   actions: write
   contents: read
+  id-token: write
 
 jobs:
   build:
     runs-on: ubuntu-latest
     steps:
-      - name: Cancel Previous Runs
-        uses: styfle/cancel-workflow-action@0.11.0
-
       - name: Checkout repo
         uses: actions/checkout@v4
 
@@ -42,5 +40,5 @@ jobs:
 
       - uses: qltysh/qlty-action/coverage@main
         with:
-          coverage-token: ${{ secrets.QLTY_COVERAGE_TOKEN }}
+          oidc: true
           files: coverage/clover.xml
diff --git a/.qlty/.gitignore b/.qlty/.gitignore
@@ -1,4 +1,4 @@
-cache
-logs
-out
-plugins
+*
+!configs
+!hooks
+!qlty.toml
diff --git a/README.md b/README.md
@@ -14,8 +14,11 @@ This repository uses [PHPUnit](https://phpunit.de/index.html) for testing and ge
 - [PHPUnit](https://phpunit.de/index.html) 10.x or above
 - [Pcov](https://github.com/krakjoe/pcov) 1.0.11 or above
 - Run tests with `vendor/bin/phpunit`
-- An account on Qlty (free for open source)
-- `QLTY_COVERAGE_TOKEN` is set as a GitHub Actions [repository secret](https://docs.github.com/en/actions/security-guides/using-secrets-in-github-actions#creating-secrets-for-a-repository)
+- An account on [Qlty Cloud](https://qlty.sh) (free)
+
+> [!NOTE]
+>
+> This repository is using GitHub's OpenID Connect (OIDC) to authenticate the coverage upload with Qlty Cloud instead of storing a coverage token as a GitHub Actions secret.
 
 ## Set up
 

-Original file line number
+Diff line change
@@ @@ -1,4 +1,4 @@ @@
 -cache
 -logs
 -out
 -plugins
 +*
 +!configs
 +!hooks
 +!qlty.toml