search

pypa / packaging.python.org

Python Packaging User Guide
http://packaging.python.org
1.45k stars 932 forks source link

Replace manual Sigstore signing with a separate job using `actions/attest-build-provenance` @ GHA publishing guide #1567

Open webknjaz opened 4 months ago

webknjaz commented 4 months ago

https://github.blog/2024-05-02-introducing-artifact-attestations-now-in-public-beta/