Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Attest built artifacts #267

Open
llucax opened this issue May 6, 2024 · 0 comments
Open

Attest built artifacts #267

llucax opened this issue May 6, 2024 · 0 comments
Labels
part:ci Affects the GitHub workflow and other parts for running CI type:enhancement New feature or enhancement visitble to users
Milestone
Untriaged

Comments

@llucax
Copy link
Contributor

llucax commented May 6, 2024
edited
Loading

What's needed?

GitHub has a new option to add artifact attestation to establish provenance for builds and we should use it.

Proposed solution

Add an extra step to attest the generated files:

- name: Generate artifact attestation
  uses: actions/attest-build-provenance@v1
  with:
    subject-path: 'PATH/TO/ARTIFACT'

Use cases

  • Generated docs
  • Generated Python wheels and source distribution files

Alternatives and workarounds

No response

Additional context
@llucax llucax added type:enhancement New feature or enhancement visitble to users part:ci Affects the GitHub workflow and other parts for running CI labels May 6, 2024
@llucax llucax added this to the Untriaged milestone May 6, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
part:ci Affects the GitHub workflow and other parts for running CI type:enhancement New feature or enhancement visitble to users
Projects
None yet
Milestone
Untriaged
Development

No branches or pull requests
1 participant
@llucax