build(deps): bump keyring from 25.4.1 to 25.5.0 in /tools/publish (#2355)

Bumps [keyring](https://github.com/jaraco/keyring) from 25.4.1 to
25.5.0.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/jaraco/keyring/blob/main/NEWS.rst">keyring's
changelog</a>.</em></p>
<blockquote>
<h1>v25.5.0</h1>
<h2>Features</h2>
<ul>
<li>When parsing <code>keyring_path</code> from the config, the home
directory is now expanded from <code>~</code>. (<a
href="https://redirect.github.com/jaraco/keyring/issues/696">#696</a>)</li>
</ul>
<h2>Bugfixes</h2>
<ul>
<li>In get_credential, now returns None when the indicated username is
not found. (<a
href="https://redirect.github.com/jaraco/keyring/issues/698">#698</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/jaraco/keyring/commit/999a2f945a6449a914f192a2fad5805183a6f09d"><code>999a2f9</code></a>
Finalize</li>
<li><a
href="https://github.com/jaraco/keyring/commit/8279fd8db45303b897e74bc4dbf4ff10e7b61345"><code>8279fd8</code></a>
Merge <a
href="https://github.com/jaraco/skeleton">https://github.com/jaraco/skeleton</a></li>
<li><a
href="https://github.com/jaraco/keyring/commit/ccaee76a2aecc8173212b89894d1cdba0e2fa9fa"><code>ccaee76</code></a>
Merge pull request <a
href="https://redirect.github.com/jaraco/keyring/issues/699">#699</a>
from JamieBeverley/bugfix/wrong_username</li>
<li><a
href="https://github.com/jaraco/keyring/commit/103c53550cf3e9904666c43138d32e827befe0ac"><code>103c535</code></a>
🧎‍♀️ Genuflect to the types.</li>
<li><a
href="https://github.com/jaraco/keyring/commit/5e4b99eefb5e905836dc2259d44e0c90b11263ba"><code>5e4b99e</code></a>
Unified the Windows.get_password and .get_credential logic through a new
_res...</li>
<li><a
href="https://github.com/jaraco/keyring/commit/f33fcfb6421a532db2ab87a486fb074859631ef5"><code>f33fcfb</code></a>
Restore the indentation on the check, keeping the logic in the only
place it'...</li>
<li><a
href="https://github.com/jaraco/keyring/commit/2f3f4eccdf3ab178235128aa9409e2895d21ecd8"><code>2f3f4ec</code></a>
Updated comment to match new behavior.</li>
<li><a
href="https://github.com/jaraco/keyring/commit/562c69fdf66a9fba6d7aeb12b778f8a4fc1580b8"><code>562c69f</code></a>
👹 Feed the hobgoblins (delint).</li>
<li><a
href="https://github.com/jaraco/keyring/commit/916c0390067b774b062fe01ac829bcb1ff693626"><code>916c039</code></a>
Add news fragment.</li>
<li><a
href="https://github.com/jaraco/keyring/commit/8e2f8b2841284e8f0050e844b1c156a9816c7b0f"><code>8e2f8b2</code></a>
Merge pull request <a
href="https://redirect.github.com/jaraco/keyring/issues/696">#696</a>
from torarvid/torarvid/expanduser</li>
<li>Additional commits viewable in <a
href="https://github.com/jaraco/keyring/compare/v25.4.1...v25.5.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=keyring&package-manager=pip&previous-version=25.4.1&new-version=25.5.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

You can trigger a rebase of this PR by commenting `@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

> **Note**
> Automatic rebases have been disabled on this pull request as it has
been open for over 30 days.

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Author: dependabot[bot]