[TODO] Migrate the release process to Trusted Publishing

[webknjaz]

This will enable publishing digital attestations and using short-lived secrets.

If implemented right, this will preserve the ability for release managers to verify the dists before publishing them.

https://packaging.python.org/en/latest/guides/publishing-package-distribution-releases-using-github-actions-ci-cd-workflows/ shows how to do this.

[webknjaz]

@jezdez this is something we talked about two PyCons ago, in SLC. Let's make it happen.

IIRC, the main concern was that ability to preview the dists before forwarding them to PyPI. It's now fully possible relatively easily.

This will require some repo+PyPI configuration from you.