OIDC trusted publishing for crates.io and PyPI

## Pre-1.0 security item (ADR-0021)

Use OIDC trusted publishing instead of long-lived API tokens for package publishing.

### When to action
When crates.io and PyPI accounts/organizations are created for aces-framework.

### What to do
- Configure GitHub OIDC identity provider with crates.io and PyPI
- Update CI release workflows to use `pypi-publish` and `cargo-publish` with OIDC
- Remove any long-lived API tokens from GitHub secrets

### References
- STANDARDS.md §10.3, §10.7
- ADR-0021 Layer 3 (CI/CD Security)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

OIDC trusted publishing for crates.io and PyPI #5

Pre-1.0 security item (ADR-0021)

When to action

What to do

References

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

OIDC trusted publishing for crates.io and PyPI #5

Description

Pre-1.0 security item (ADR-0021)

When to action

What to do

References

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions