From c85fff8e6185587d6889c61c47521614c61759b3 Mon Sep 17 00:00:00 2001
From: Maxime Labelle <springcomp@users.noreply.github.com>
Date: Sat, 18 Oct 2025 10:05:37 +0200
Subject: [PATCH] Migrated GitHub Actions workflow to using the Trusted
 Publishers (OIDC)

Added permission for id-token and removed NODE_AUTH_TOKEN from publish step.
---
 .github/workflows/publish.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
index 7c1e3f9..dcb0d3a 100644
--- a/.github/workflows/publish.yml
+++ b/.github/workflows/publish.yml
@@ -1,5 +1,7 @@
 permissions:
+  id-token: write  # Required for OIDC
   contents: read
+
 name: 🚀 release
 
 on:
@@ -53,5 +55,3 @@ jobs:
         run: npm test -- test/build-artifacts.spec.ts
       - name: ✉️ publish
         run: npm publish --verbose --access public --tag latest
-        env:
-          NODE_AUTH_TOKEN: ${{secrets.NPM_AUTH_TOKEN}}