[Pitch]: Update release workflow for compatibility with Immutable Releases

[jkylekelly]

📓 Pitch

With the upcoming launch of GitHub's Immutable Releases (github/roadmap#1138), release assets and tags will be locked against modification once a release is published. This significantly strengthens supply chain security and aligns with best practices for provenance and integrity.

I believe the default behavior of this Action creates a release and immediately publishes it, with assets uploaded only after the release has been published. If users enable Immutable Releases, the Action will fail when attempting to upload assets to the release.

Proposed solution:

• Modify the workflow to initialize the release in draft mode
• Upload assets to the drafted release
• Once complete, publish the release

This will ensure seamless compatibility with Immutable Releases and align with GitHub's recommended practices.

[KSA2O3O]

#640

[bjompen]

Can confirm - this action does not currently work with immutable releases because of this exact reason.
As this is also the action linked from amongst others the "official actions" repos (https://github.com/actions/create-release) it would be good if this could be made to work..