ci: publisher using npm trusted publisher with OIDC

[pedro-martins-brisa]

Description

This PR updates the release workflow to use npm's Trusted Publishing (OIDC) instead of token-based authentication. This improves security by eliminating the need for a long-lived NODE_AUTH_TOKEN secret.

Proposed Changes

• Removed registry-url and scope configuration from actions/setup-node.
• Removed the NODE_AUTH_TOKEN environment variable usage.
• Updated the npm publish step to rely on OIDC authentication with provenance.
• Modified: .github/workflows/release.yml

Compliance

• I have verified that this change complies with our code and contribution policies.
• I have verified that this change does not cause regressions and does not affect other parts of the code.

References

npm Trusted Publishing Documentation