Please adapte standard workflow test-and-release.yml as following:

• modify permissions to include id-token: write. Permissions for deploy should be

  -  permissions:
        id-token: write
        contents: write
  

• remove npm-token paramater and any instructions to create an npm token

• add instructions to set up trusted deploy near deploy section by adding a link to npms guide https://docs.npmjs.com/trusted-publishers#for-github-actions