Use trusted publishing on crates.io

[JohnTitor]

For better security, we could use the trusted publishing feature on crates.io instead of release-plz: https://crates.io/docs/trusted-publishing

@tgross35 I'd like to hear your opinion as you set up the current release workflow!

[tgross35]

👍 from me, it sounds awesome. Feel free to ask infra to set it up, I think this should be doable with release-plz https://release-plz.dev/docs/github/quickstart#2-set-the-cargo_registry_token-secret. Which is a great thing since we use it in a ton of rust-lang crates nowadays.

(think there may have been some zulip discussion about this but I don't have it handy)