fix (cd): replaced releaste tag permissions with pypi api token inside the publish pypi workflow and added quotes around cargo regisry token env var to enable correct parsing

Signed-off-by: rafaeljohn9 <[email protected]>

Author: RafaelJohn9

.github/workflows/publish-cargo.yml

@@ -16,4 +16,4 @@ jobs:
       - name: Install Rust
         uses: dtolnay/rust-toolchain@stable
 
-      - run: cargo publish --token ${{ secrets.CARGO_REGISTRY_TOKEN }}
+      - run: cargo publish --token "${{ secrets.CARGO_REGISTRY_TOKEN }}"

.github/workflows/publish-pypi.yml

@@ -25,4 +25,5 @@ jobs:
 
       - name: Publish to PyPI
         uses: pypa/gh-action-pypi-publish@release/v1
-        # Uses trusted publishing via id-token — no API token needed
+        with:
+          password: ${{ secrets.PYPI_API_TOKEN }}

.github/workflows/release-tag.yml

@@ -5,11 +5,6 @@ on:
     tags: ["v*.*.*"]
   workflow_dispatch:
 
-permissions:
-  id-token: write
-  contents: read
-  packages: write
-
 jobs:
   build:
     uses: ./.github/workflows/build-binaries.yml