Skip to content

Commit e22cd79

Browse files
Chocobo1Chocobo1
committed
Generate build provenace attestations
1 parent 8aa6c44 commit e22cd79

File tree

3 files changed

+22
-1
lines changed

3 files changed

+22
-1
lines changed

.github/workflows/alpha.yaml

Lines changed: 7 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -6,6 +6,8 @@ on:
66
workflow_dispatch: # allow trigger it manually
77

88
permissions:
9+
attestations: write
10+
id-token: write
911
packages: write
1012

1113
jobs:
@@ -86,6 +88,11 @@ jobs:
8688
name: qbittorrent-nox_alpha_${{ steps.set-variables.outputs.PLATFORM_NAME }}
8789
path: qbittorrent-nox_alpha_${{ steps.set-variables.outputs.PLATFORM_NAME }}
8890

91+
- name: Generate build provenace attestations
92+
uses: actions/attest-build-provenance@v1
93+
with:
94+
subject-path: qbittorrent-nox_alpha_${{ steps.set-variables.outputs.PLATFORM_NAME }}
95+
8996
- name: Login to Docker Hub
9097
uses: docker/login-action@v3
9198
with:

.github/workflows/ci.yaml

Lines changed: 8 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -2,7 +2,9 @@ name: CI
22

33
on: [pull_request, push]
44

5-
permissions: {}
5+
permissions:
6+
attestations: write
7+
id-token: write
68

79
concurrency:
810
group: ${{ github.workflow }}-${{ github.head_ref || github.run_id }}
@@ -84,3 +86,8 @@ jobs:
8486
with:
8587
name: qbittorrent-nox_devel_${{ steps.set-variables.outputs.PLATFORM_NAME }}
8688
path: qbittorrent-nox_devel_${{ steps.set-variables.outputs.PLATFORM_NAME }}
89+
90+
- name: Generate build provenace attestations
91+
uses: actions/attest-build-provenance@v1
92+
with:
93+
subject-path: qbittorrent-nox_devel_${{ steps.set-variables.outputs.PLATFORM_NAME }}

.github/workflows/release.yaml

Lines changed: 7 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -4,6 +4,8 @@ on:
44
workflow_dispatch: # trigger it manually
55

66
permissions:
7+
attestations: write
8+
id-token: write
79
packages: write
810

911
env:
@@ -103,6 +105,11 @@ jobs:
103105
name: qbittorrent-nox_${{ env.QBT_VERSION }}_${{ steps.set-variables.outputs.PLATFORM_NAME }}
104106
path: qbittorrent-nox_${{ env.QBT_VERSION }}_${{ steps.set-variables.outputs.PLATFORM_NAME }}
105107

108+
- name: Generate build provenace attestations
109+
uses: actions/attest-build-provenance@v1
110+
with:
111+
subject-path: qbittorrent-nox_${{ env.QBT_VERSION }}_${{ steps.set-variables.outputs.PLATFORM_NAME }}
112+
106113
- name: Login to Docker Hub
107114
uses: docker/login-action@v3
108115
with:

0 commit comments

Comments
 (0)