Migrate GitHub Actions publishing flow to Trusted Publishing

https://crates.io/docs/trusted-publishing

Author: MarijnS95

.github/workflows/publish.yaml

@@ -9,7 +9,15 @@ jobs:
   Publish:
     if: github.repository_owner == 'Traverse-Research'
     runs-on: ubuntu-latest
+    # https://crates.io/docs/trusted-publishing
+    environment: release  # Optional: for enhanced security
+    permissions:
+      id-token: write     # Required for OIDC token exchange
     steps:
       - uses: actions/checkout@v4
+      - uses: rust-lang/crates-io-auth-action@v1
+        id: auth
       - name: Publish
-        run: cargo publish --token ${{ secrets.cratesio_token }}
+        env:
+          CARGO_REGISTRY_TOKEN: ${{ steps.auth.outputs.token }}
+        run: cargo publish

README.md

@@ -24,3 +24,15 @@ rust-template = "0.0.0"
 ```rust
 // A code example
 ```
+
+## Template usage
+
+> [!WARNING]
+> Delete this section after inheriting from the template. It only explains how to utilize and configure this template effectively.
+
+### Publishing strategy
+
+The [publish workflow] relies on crates.io's [Trusted Publishing] to publish releases from GitHub Actions as soon as a tag is pushed.  To set this up, ensure your repository has a `release` environment.  After publishing an initial crate version to crates.io, add the repository as a Trusted Publisher using the `publish.yaml` filename and `release` environment for your GitHub repository.
+
+[publish workflow]: ./.github/workflows/publish.yaml
+[Trusted Publishing]: https://crates.io/docs/trusted-publishing