From 747025e25c91fbccd4cb1f8844bda01b61d0f9b9 Mon Sep 17 00:00:00 2001
From: Etienne Stalmans <etienne@supabase.io>
Date: Tue, 28 Oct 2025 12:13:12 +0100
Subject: [PATCH] chore: switch to trusted publishing

NPM package publishing should happen through trusted publisher rather
than npm token
---
 .github/workflows/release.yml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 5afcd6ee..39280fba 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -18,6 +18,7 @@ jobs:
       new-release-version: ${{ steps.semantic-release.outputs.new_release_version }}
     permissions:
       contents: write
+      id-token: write
     steps:
       - uses: actions/checkout@v5
 
@@ -30,12 +31,11 @@ jobs:
           npm run build
 
       - id: semantic-release
-        uses: cycjimmy/semantic-release-action@v4
+        uses: cycjimmy/semantic-release-action@v5
         with:
-          semantic_version: 21
+          semantic_version: 25.0.1 # version with latest npm and support for trusted publishing
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-          NPM_TOKEN: ${{ secrets.NPM_TOKEN }}
 
   docker-hub:
     name: Release on Docker Hub