This is an official SLSA Provenance
buildType that describes the execution of a GitLab CI/CD job.
This definition is hosted and maintained by GitLab. When enabled with the
RUNNER_GENERATE_ARTIFACTS_METADATA CI/CD variable, the runner produces SLSA provenance
v1.0 statements.
This buildType describes the execution of a workflow that builds a software
artifact.
Note
Consumers should ignore unrecognized external parameters. Any changes must not change the semantics of existing external parameters.
Both internal and external parameters are documented in the Configuring runners documentation.
An example provenance statement can also be found in that page.