Switch to trusted publishing

[giarc3]

NPM tokens now have short expirations, so we should switch to Trusted Publishing instead.

In addition to the trusted publishing the publish should be a github workflow job.

There is also an issue with snapshot.yaml that didn't allow re-running on failure. We should fix this to be like our other publishing jobs and re-running should be possible.

[gitcommitshow]

Heads up - use node v24 in your github action for the publishing or it will throw error due to auth issue

Make sure you also have other settings - gitcommitshow/resilient-llm#39 (comment)