ci: Use npm trusted publishing instead of NPM_TOKEN

lutter · lutter · commit 2362c8d052e1 · 2026-03-29T17:45:51.000-07:00
Remove NODE_AUTH_TOKEN; OIDC identity from id-token: write is
sufficient with trusted publishing configured on npmjs.
diff --git a/.github/workflows/gnd-binary-build.yml b/.github/workflows/gnd-binary-build.yml
@@ -263,8 +263,6 @@ jobs:
       - name: Publish
         run: npm publish --provenance --access public ${{ inputs.dry_run && '--dry-run' || '' }}
         working-directory: pkg
-        env:
-          NODE_AUTH_TOKEN: ${{ secrets.GRAPHPROTOCOL_NPM_TOKEN }}
 
   publish-npm-wrapper:
     name: Publish @graphprotocol/gnd wrapper
@@ -320,6 +318,4 @@ jobs:
 
       - name: Publish
         run: npm publish --provenance --access public ${{ inputs.dry_run && '--dry-run' || '' }}
-        working-directory: pkg
-        env:
-          NODE_AUTH_TOKEN: ${{ secrets.GRAPHPROTOCOL_NPM_TOKEN }}
+        working-directory: pkg
