build(deps): bump pypa/gh-action-pypi-publish from 1.8.5 to 1.8.6

[dependabot[bot]]

Bumps pypa/gh-action-pypi-publish from 1.8.5 to 1.8.6.

Release notes

Sourced from pypa/gh-action-pypi-publish's releases.

v1.8.6

What's Updated

• @​woodruffw dropped the references to a “private beta” from the project docs and runtime in pypa/gh-action-pypi-publish#147. He also clarified that the API tokens are still more secure than passwords in pypa/gh-action-pypi-publish#150.
• @​asherf noticed that the action metadata incorrectly marked the password field as required and contributed a correction in pypa/gh-action-pypi-publish#151
• @​webknjaz moved the Trusted Publishing example to the top of the README in hopes that new users would default to using it via https://github.com/pypa/gh-action-pypi-publish/commit/f47b34707fd264d5ddb1ef322ca74cf8e4cf351b

New Contributors

• @​asherf made their first contribution in pypa/gh-action-pypi-publish#151

Full Diff: https://github.com/pypa/gh-action-pypi-publish/compare/v1.8.5...v1.8.6

Commits

• a56da0b Merge pull request #151 from asherf/trusted
• e4b9031 password input is no longer required, since not specifying it implies trusted...
• 5a085bf Merge pull request #150 from trail-of-forks/tob-doc-tweaks
• 0811f99 README: small doc tweaks
• f47b347 📝🎨 Put OIDC on pedestal @ README
• 7a1a355 🎨 Show GH environments use in README examples
• 3b6670b Merge pull request #147 from trail-of-forks/tob-stabilize-oidc
• c008c2f README: re-add OIDC note
• fe431ff README, oidc-exchange: remove beta references
• c542b72 Bump WPS flake8 plugin set to v0.17.0
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once CI passes on it, as requested by @iranzo.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot[bot]]

One of your CI runs failed on this pull request, so Dependabot won't merge it.

Dependabot will still automatically merge this pull request if you amend it and your tests pass.

[iranzo]

:tada: This PR is included in version 1.14.3 :tada:

The release is available on GitHub release

Your semantic-release bot :package::rocket: