Skip to content

Commit 42ea033

Browse files
committed
feat: Add id-token permission and update attestation configuration in GitHub Actions workflow.
1 parent a85254b commit 42ea033

1 file changed

Lines changed: 4 additions & 2 deletions

File tree

.github/workflows/deployment.yml

Lines changed: 4 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -36,6 +36,7 @@ permissions:
3636
contents: read
3737
packages: write
3838
deployments: write
39+
id-token: write
3940

4041
# Global environment variables used across jobs.
4142
env:
@@ -121,8 +122,9 @@ jobs:
121122
platforms: linux/amd64,linux/arm64
122123
tags: ${{ steps.meta.outputs.tags }}
123124
labels: ${{ steps.meta.outputs.labels }}
124-
provenance: true
125-
sbom: true
125+
attests: |
126+
type=provenance,mode=max
127+
type=sbom,mode=max
126128
cache-from: type=gha
127129

128130
# Marking deployment as "success" if the workflow succeeds.

0 commit comments

Comments
 (0)