Trusted Publishing is a recommended security capability by the OpenSSF Securing Software Repositories Working Group as it removes the need to securely manage an API token in the build system.
pub.dev, PyPI, and RubyGems added support in 2023 and other package registries have adopted it since. The following package registries (that I know of) support Trusted Publishing:
I built a site that shows a timeline of when each package registry added support for Trusted Publishing.
