chore: enable trusted publishing for releases to npm and pypi

[iliapolo]

This allows us to remove NPM and PyPI tokens from our secrets. Draft until I also make the necessary changes in our NPM and PyPI accounts.

---

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license

[iliapolo]

We already have a releasing environment with the necessary branch protection rule. It is currently only used to publish some of our assets to AWS accounts. I thought about creating a dedicated environment for the package manager releases, but I don't see much value in that.

[codecov-commenter]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 83.83%. Comparing base (becbd49) to head (00c9037).

Additional details and impacted files

@@            Coverage Diff             @@
##             main     #842      +/-   ##
==========================================
+ Coverage   83.48%   83.83%   +0.35%     
==========================================
  Files          65       65              
  Lines        9554     9554              
  Branches     1134     1138       +4     
==========================================
+ Hits         7976     8010      +34     
+ Misses       1553     1520      -33     
+ Partials       25       24       -1     

Flag	Coverage Δ
suite.unit	83.83% <ø> (+0.35%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[iliapolo]

Draft because we might not be able to move pypi just yet