[$] Eliminating long-lived credentials with trusted publishing

Trustedpublishing is an authentication mechanism that relies onshort-lived credentials to reduce the risk of supply-chain attacks. Atthe 2026 OpenSource Summit North America, Mike Fiedler walked the audiencethrough why trusted publishing exists, how it works, and made the casefor its adoption. It is not a silver bullet against all attacks, butit does offer protection against theft of long-lived credentials usedto publish to package registries.