ci: use built-in GITHUB_TOKEN to fix release workflow

The previous GITH_PACKAGE_TOKEN PAT was returning Bad credentials when
softprops/action-gh-release tried to fetch/create the release. Switch
to the built-in GITHUB_TOKEN, which is auto-rotated per run and only
needs the existing 'contents: write' permission already declared at
the workflow level.

Author: alisaitteke

.github/workflows/publish.yml

@@ -1,17 +1,16 @@
 name: Create GitHub Release
 
+# Use the built-in GITHUB_TOKEN; no custom PAT is required.
 permissions:
   contents: write
 
 on:
-
   # Automatically create GitHub Release when a version tag is pushed.
   # NPM publish is handled manually outside of CI (see scripts/release.sh).
   push:
     tags:
       - 'v*.*.*'
 
-
 jobs:
   release:
     runs-on: ubuntu-latest
@@ -23,12 +22,12 @@ jobs:
 
       - name: Resolve version from tag
         run: echo "NEW_VERSION=${GITHUB_REF#refs/tags/}" >> $GITHUB_ENV
-      - name: Build changelog
 
+      - name: Build changelog
         id: build_changelog
         uses: mikepenz/release-changelog-builder-action@v4.1.1
         env:
-          GITHUB_TOKEN: ${{ secrets.GITH_PACKAGE_TOKEN }}
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Publish GitHub Release
         uses: softprops/action-gh-release@v1
@@ -38,4 +37,4 @@ jobs:
           body: ${{ steps.build_changelog.outputs.changelog }}
           prerelease: ${{ contains(env.NEW_VERSION, 'beta') || contains(env.NEW_VERSION, 'alpha') || contains(env.NEW_VERSION, 'rc') }}
         env:
-          GITHUB_TOKEN: ${{ secrets.GITH_PACKAGE_TOKEN }}
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}