[skip-ci] Update release.yml to support trusted publishing

Author: Syzuna

.github/workflows/release.yml

@@ -8,7 +8,9 @@ jobs:
   release:
    if: "contains(toJSON(github.event.commits.*.message), '[Release]')"
    runs-on: ubuntu-latest
-
+   permissions:
+      id-token: write  # enable GitHub OIDC token issuance for this job
+      
    steps:
    - uses: actions/checkout@v5
    - name: Setup .NET
@@ -21,13 +23,19 @@ jobs:
      run: dotnet build -c Release --no-restore
    - name: Pack TwitchLib.Client
      run: dotnet pack -v normal -c Release --no-build
+   # Get a short-lived NuGet API key
+   - name: NuGet login (OIDC → temp API key)
+     uses: NuGet/login@v1
+     id: login
+     with:
+       user: ${{ secrets.NUGET_USER }}     
    - name: Push to Nuget
-     run: dotnet nuget push "./artifacts/package/release/*.nupkg" -k ${{ secrets.API_NUGET_TOKEN }} -s https://api.nuget.org/v3/index.json
+     run: dotnet nuget push "./artifacts/package/release/*.nupkg" --api-key ${{steps.login.outputs.NUGET_API_KEY}} -s https://api.nuget.org/v3/index.json
    - name: Send Discord Notification
      uses: sarisia/actions-status-discord@v1
      if: always()
      with:
        webhook: ${{ secrets.DISCORD_WEBHOOK }}
        title: "Release Nuget Package"
        username: "TwitchLib Deploy"
-       
+