Developed a security-focused publishing workflow for the aiidateam/aiida-core repository by implementing OIDC-based Trusted Publishing for PyPI and TestPyPI. This transition replaced traditional token-based authentication with short-lived, trust-based credentials, eliminating the need for stored API tokens in GitHub secrets and reducing security risks in the CI/CD pipeline. Leveraging Python, YAML, and GitHub Actions, the work aligned the release process with modern identity standards and improved automation security. The approach minimized disruption to existing workflows while enhancing maintainability and laying the foundation for broader adoption of identity-based publishing across packages within the DevOps and CI/CD ecosystem.