Add npm trusted publishing support (#45)

* Add npm trusted publishing support

- Add id-token, contents, and pull-requests write permissions to release job
- Add npm update step to ensure latest npm version for provenance support
- Add --provenance flag for npm publish
- Add changeset for all packages
- Enables automated publishing via OIDC without requiring OTP

* Remove --provenance

Author: jgoz

.changeset/npm-trusted-publishing.md

@@ -0,0 +1,7 @@
+---
+"@awesome-code-style/eslint-config": patch
+"@awesome-code-style/prettier-config": patch
+"@awesome-code-style/stylelint-config": patch
+---
+
+Add npm trusted publishing support for automated releases via OIDC

.github/workflows/release.yml

@@ -15,6 +15,10 @@ jobs:
     if: github.repository == 'implydata/awesome-code-style'
     name: Release
     runs-on: ubuntu-latest
+    permissions:
+      id-token: write
+      contents: write
+      pull-requests: write
 
     steps:
       - uses: actions/checkout@v3
@@ -29,6 +33,9 @@ jobs:
 
       - run: npm install --prefer-offline --no-audit
 
+      - name: Update npm
+        run: npm install -g npm@latest
+
       - name: Create Release Pull Request or Publish to npm
         id: changesets
         uses: changesets/action@v1