[CD] pypi auto release

Author: imoneoi

.github/workflows/pypi_publish.yaml

@@ -0,0 +1,17 @@
+name: Publish to PyPI.org
+on:
+  release:
+    types: [published]
+jobs:
+  pypi:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v3
+        with:
+          fetch-depth: 0
+      - run: python3 -m pip install --upgrade build && python3 -m build
+      - name: Publish package
+        uses: pypa/gh-action-pypi-publish@release/v1
+        with:
+          password: ${{ secrets.PYPI_API_TOKEN }}

README.md

@@ -276,8 +276,8 @@ Our OpenChat V3 models are licensed under the [Llama 2 Community License](https:
 
 💌 We are a student team from Tsinghua University, working on OpenChat, a project that requires additional computing power or LLMs API keys for further development. If you are interested in our project and would like to offer support, please feel free to reach out to us:
 
-* Wang Guan (Project Leader; imonenext@gmail.com)
-* Cheng Sijie (LeslieCheng0701@outlook.com)
+* Wang Guan (Project Leader) [imonenext at gmail dot com]
+* Cheng Sijie [LeslieCheng0701 at outlook dot com]
 
 We look forward to hearing from you and collaborating on this exciting project!
 

SECURITY.md

@@ -9,4 +9,12 @@
 
 ## Reporting a Vulnerability
 
-TODO
+We take security vulnerabilities in our open-source project seriously and appreciate responsible disclosure from users.
+
+If you believe you have found a security vulnerability in our project, please report it to us by creating a Github issue with the label "security" or "vulnerability". Please do not publicly disclose the vulnerability until it has been addressed by our project team.
+
+We will acknowledge receipt of your vulnerability report and will keep you informed of our progress in addressing the vulnerability. If you would like to communicate with us about the vulnerability, please email [imonenext at gmail dot com].
+
+We will not take legal action against users who report vulnerabilities in good faith and in accordance with this disclosure policy.
+
+Thank you for helping us keep our open-source project secure!

ochat/__init__.py

@@ -1 +0,0 @@
-__version__ = "3.1.0"

pyproject.toml

@@ -1,13 +1,13 @@
 [build-system]
-requires = ["setuptools>=61.0"]
+requires = ["setuptools>=45", "setuptools_scm[toml]>=6.2"]
 build-backend = "setuptools.build_meta"
 
 [project]
 name = "ochat"
-version = "3.1.0"
 description = "An efficient framework for training and serving top-tier, open-source conversational LLMs."
 readme = "README.md"
 requires-python = ">=3.8"
+dynamic = ["version"]
 classifiers = [
     "Programming Language :: Python :: 3",
     "License :: OSI Approved :: Apache Software License",
@@ -47,3 +47,5 @@ exclude = ["assets*", "ochat/experimental*"]
 
 [tool.wheel]
 exclude = ["assets*", "ochat/experimental*"]
+
+[tool.setuptools_scm]