Generate signed build provenance attestations for nightly builds

This commit is contained in:
Scott Brenner
2025-06-15 12:36:33 -07:00
committed by teejusb
parent aa9ebb6c1c
commit 4880231200
+8
View File
@@ -10,6 +10,9 @@ name: Nightly release
jobs:
build:
runs-on: ${{ matrix.os }}
permissions:
id-token: write
attestations: write
strategy:
fail-fast: false
matrix:
@@ -71,8 +74,13 @@ jobs:
- name: Create nightly release
run: ${{ matrix.release }}
- name: Upload artifacts
id: upload
uses: actions/upload-artifact@v4
with:
name: ITGmania-${{ github.sha }}-${{ matrix.name }}
path: ${{ matrix.path }}
compression-level: 0
- uses: actions/attest-build-provenance@v2
with:
subject-name: ITGmania-${{ github.sha }}-${{ matrix.name }}
subject-digest: sha256:${{ steps.upload.outputs.artifact-digest }}