github/containerd
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 2 Wiki Activity

Merge pull request #10543 from vishalRGurrala/feature/generate-attestation-for-artifacts

Browse Source 
Generate attestation for artifacts during release CI job
This commit is contained in:
Derek McGowan 2024-08-26 23:36:04 +00:00 committed by GitHub
commit a26a33c3d9
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
.github/workflows/release.yml vendored
View File

@ -137,6 +137,8 @@ jobs:
if: github.event_name == 'push' && startsWith(github.ref, 'refs/tags/v') if: github.event_name == 'push' && startsWith(github.ref, 'refs/tags/v')
permissions: permissions:
contents: write contents: write
id-token: write
attestations: write
runs-on: ubuntu-24.04 runs-on: ubuntu-24.04
timeout-minutes: 10 timeout-minutes: 10
needs: [build, check] needs: [build, check]
@ -157,3 +159,7 @@ jobs:
files: | files: |
builds/release-tars-**/* builds/release-tars-**/*
make_latest: false make_latest: false
- name: Attest Artifacts
uses: actions/attest-build-provenance@v1
with:
subject-path: ./builds/release-tars-**/*.tar.gz