Fixed publishing token perms (#40)

Co-authored-by: Tomas Vesely <448809+wham@users.noreply.github.com>

Author: wham

.github/workflows/release.yml

@@ -18,6 +18,7 @@ on:
 
 permissions:
   contents: write
+  id-token: write
 
 jobs:
   check-pr-label:
@@ -341,9 +342,6 @@ jobs:
         with:
           node-version: "20"
           registry-url: "https://registry.npmjs.org"
-          # Enable OIDC trusted publishing authentication
-          # This eliminates the need for NPM_TOKEN secrets
-          # See: https://github.blog/changelog/2024-04-15-npm-provenance-now-supports-github-actions/
 
       - name: Download all artifacts
         uses: actions/download-artifact@v4
@@ -393,12 +391,9 @@ jobs:
         run: |
           for dir in npm/darwin-arm64 npm/darwin-x64 npm/linux-arm64 npm/linux-x64 npm/windows; do
             cd "$dir"
-            # Using --provenance with OIDC authentication (no token needed)
-            npm publish --provenance --access public
+            npm publish
             cd ../..
           done
 
       - name: Publish main package
-        run: |
-          # Using --provenance with OIDC authentication (no token needed)
-          npm publish --provenance --access public
+        run: npm publish