[OGUI-1860] Migrate to use trusted publisher for npm deployments (#2051)

* updates the `release.yml` to make use of the NPM trusted publishers functionality between NPM and GitHub so that access tokens do not have to be generated, maintained and provided. 
* migrates to use to Node v24 (release only) to force NPM v11 to be used
* More on trusted publishers: https://docs.npmjs.com/trusted-publishers

Author: graduta

.github/workflows/release.yml

@@ -1,12 +1,13 @@
 name: release
-permissions:
-  contents: write
-  packages: write
-  actions: write
 on:
   release:
     types: [created]
   workflow_dispatch:
+
+permissions:
+  contents: write
+  id-token: write
+
 jobs:
   deploy-npm-module:
     runs-on: ubuntu-latest
@@ -16,7 +17,7 @@ jobs:
     - uses: actions/checkout@v6
     - uses: actions/setup-node@v6
       with:
-        node-version: '22.x'
+        node-version: '24.x'
         registry-url: 'https://registry.npmjs.org'
     - name: Check released tag matches ALICE O2 naming pattern
       run: |
@@ -35,8 +36,6 @@ jobs:
         echo "version=$VERSION" >> $GITHUB_OUTPUT
         echo "PROJECT=$PROJECT" >> $GITHUB_ENV
     - run: npm publish
-      env:
-        NODE_AUTH_TOKEN: ${{ secrets.NPM_DEPLOY_TOKEN }}
   upload-asset:
     runs-on: ubuntu-latest
     needs: deploy-npm-module