[Python] Use a trusted publisher to release to Pypi. (#263)

* [Python] Use a trusted publisher to release to Pypi.

Pypi now requires 2FA and the a trusted publisher is the recommendation
for automated releases. The workflow is renamed release-pypi.yaml to
match the trusted publisher definition in for cucumber-expression in
Pypi.

* Update the Changelog.md

Author: brasmusson

.github/workflows/release-python.yml renamed to .github/workflows/release-pypi.yaml

@@ -32,10 +32,8 @@ jobs:
       - name: Build
         run: poetry build
 
-      - name: Config for PyPI release
-        run: |
-          poetry config pypi-token.pypi "${{ secrets.PYPI_TOKEN }}"
-
-      - name: Publish
-        run: |
-          poetry publish
+      - name: Publish package distributions to PyPI
+        uses: pypa/gh-action-pypi-publish@release/v1
+        with:
+          packages-dir: python/dist/
+          skip-existing: true

CHANGELOG.md

@@ -7,6 +7,7 @@ and this project adheres to [Semantic Versioning](http://semver.org/).
 
 ## [Unreleased]
 ### Changed
+- [Python] Updated the release workflow to use trusted publisher ([#263](https://github.com/cucumber/cucumber-expressions/pull/263))
 - [Ruby] Added subsidiary rubocop gems (RSpec/Rake/Performance), and did some initial refactoring ([#247](https://github.com/cucumber/cucumber-expressions/pull/247))
 - Additional information for alternation inside optional error message on how to fix ([#260](https://github.com/cucumber/cucumber-expressions/pull/260))