NuGet Trusted Publishing Setup
Set up NuGet trusted publishing on a GitHub Actions repo. Replaces long-lived API keys with OIDC-based short-lived tokens — no secrets to rotate or leak.
Prerequisites
GitHub Actions — this skill covers GitHub Actions setup only
nuget.org account — the user needs access to create trusted publishing policies
When to Use This Skill
Use this skill when:
Setting up trusted publishing for a NuGet package
Migrating from secrets.NUGET_API_KEY to OIDC-based publishing
Asked about keyless or secure NuGet publishing
Creating a new NuGet publish workflow from scratch
Asked to "remove NuGet API key" or "use NuGet/login"
Setting up publishing for a dotnet tool, MCP server, or template package
Asked about NuGet/login@v1 or id-token: write
related skills
semantically similar in the cross-vendor index
don't have the plugin yet? install it then click "run inline in claude" again.
+trigger phrases are concrete and scenario-specific (migrate from secrets.NUGET_API_KEY, NuGet/login@v1, id-token: write)