Replace publish workflow with official pypa action

Author: matthewelwell

.github/workflows/publish.yml

@@ -1,24 +1,52 @@
-name: Publish PyPI Package
+name: Publish to PyPI
 
 on:
-  push:
-    tags:
-      - '*'
+  release:
+    types: [published]
+  workflow_dispatch:
+
+env:
+  tag_name: ${{ github.event.release.tag_name || github.ref_name }}
+  artifact-name: flagsmith-common-${{ github.event.release.tag_name || github.ref_name }}
 
 jobs:
-  package:
+  build:
     runs-on: ubuntu-latest
-    name: Publish Pypi Package
 
     steps:
-      - name: Cloning repo
-        uses: actions/checkout@v4
+      - uses: actions/checkout@v4
+
+      - uses: actions/setup-python@v4
         with:
-          fetch-depth: 0
+          python-version: 3.12
+
+      - name: Install Poetry
+        run: pipx install poetry
+
+      - name: Build Package
+        run: poetry build
 
-      - name: Build and publish to pypi
-        uses: JRubics/poetry-publish@v2
+      - uses: actions/upload-artifact@v4
         with:
-          pypi_token: ${{ secrets.PYPI_API_TOKEN }}
-          build_format: 'sdist'
-          poetry_install_options: '--without dev'
+          name: ${{ env.artifact-name }}
+          path: dist/
+
+      - uses: softprops/action-gh-release@v2
+        with:
+          tag_name: ${{ env.tag_name }}
+          files: dist/*
+
+  publish:
+    runs-on: ubuntu-latest
+    needs: build
+
+    permissions:
+      id-token: write # for pypa/gh-action-pypi-publish to authenticate with PyPI
+
+    steps:
+      - uses: actions/download-artifact@v4
+        with:
+          name: ${{ env.artifact-name }}
+          path: dist/
+
+      - uses: pypa/gh-action-pypi-publish@release/v1