From a6daefc5678d1cbcd5c7fdc63e79f38e92b2023e Mon Sep 17 00:00:00 2001
From: Alon Girmonsky <1990761+alongir@users.noreply.github.com>
Date: Fri, 6 Mar 2026 08:04:26 -0800
Subject: [PATCH] Fix MCP Registry publish by using OIDC auth instead of
 interactive OAuth (#1857)

mcp-publisher login github uses the device flow (interactive OAuth) which
requires a human to visit a URL - this can never work in CI. Switch to
github-oidc which uses the OIDC token provided by GitHub Actions.
---
 .github/workflows/mcp-publish.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/mcp-publish.yml b/.github/workflows/mcp-publish.yml
index c47939a84..651900588 100644
--- a/.github/workflows/mcp-publish.yml
+++ b/.github/workflows/mcp-publish.yml
@@ -168,7 +168,7 @@ jobs:
       - name: Login to MCP Registry
         if: github.event_name != 'workflow_dispatch' || github.event.inputs.dry_run != 'true'
         shell: bash
-        run: mcp-publisher login github
+        run: mcp-publisher login github-oidc
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}