We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
2 parents 296227a + a2c9f20 commit af4d1c1Copy full SHA for af4d1c1
1 file changed
.github/workflows/dotnet.yml
@@ -18,6 +18,8 @@ permissions:
18
issues: read
19
checks: write
20
pull-requests: write
21
+ id-token: write
22
+ attestations: write
23
24
jobs:
25
build:
@@ -58,14 +60,21 @@ jobs:
58
60
run: dotnet pack --configuration Release --no-build
59
61
62
- name: Upload Package Artifact
63
+ id: upload
64
uses: actions/upload-artifact@v6
65
with:
- name: nuget-package
66
+ name: artifacts
67
path: |
68
**/*.nupkg
69
**/*.snupkg
70
retention-days: 14
71
72
+ - name: Build Attestation
73
+ uses: actions/attest-build-provenance@v3
74
+ with:
75
+ subject-name: artifacts.zip
76
+ subject-digest: sha256:${{ steps.upload.outputs.artifact-digest }}
77
+
78
- name: Upload test results to Codecov
79
if: ${{ !cancelled() }}
80
uses: codecov/codecov-action@v5
0 commit comments